Image: Aleksi Räisä The US Department of Treasury’s Financial Crimes Enforcement Network (FinCEN) today announced the first-ever penalty against a Helix and Coin Ninja cryptocurrency mixing
Read more
Coinbase phishing hijacks Microsoft 365 accounts via OAuth app
A new phishing campaign uses a Coinbase-themed email to install an Office 365 consent app that gives attackers access to a victim’s email. Over the
Read more
FBI warns of newly registered domains spoofing US Census Bureau
The Federal Bureau of Investigation (FBI) issued a flash alert to warn of the potential use of spoofed US Census Bureau domains in future malicious campaigns
Read more
US indicts Russian GRU ‘Sandworm’ hackers for NotPetya, worldwide attacks
The U.S. Department of Justice has charged six Russian intelligence operatives for hacking operations related to the Pyeongchang Winter Olympics, the 2017 French elections, and the
Read more
Hackers hijack Telegram, email accounts in SS7 mobile attack
Hackers with access to the Signaling System 7 (SS7) used for connecting mobile networks across the world were able to gain access to Telegram messenger
Read more
Windows GravityRAT malware now also targets Android, macOS
GravityRAT, a malware strain known for checking the CPU temperature of Windows computers to detect virtual machines or sandboxes, is now multi-platform spyware as it can
Read more
Bug bounty reporter cashes out on someone else’s exploit
Bug bounty programs have gained increased momentum and interest from the security research community for their role in promoting security awareness and responsible vulnerability disclosure. But they are
Read more
DevSecOps Benefits and Best Practices
Every agency is looking to respond to change as quickly as possible, but there are limits. An organization is only as agile and adaptable as
Read more
Watch out for Emotet malware’s new ‘Windows Update’ attachment
The Emotet botnet has begun to use a new malicious attachment that pretends to be a message from Windows Update telling you to upgrade Microsoft
Read more
NPM Removed Four Packages From Repository That Were Popping Reverse Shells
Four Javascript packages were removed from the npm repository on Thursday for containing malicious code that could pop reverse shell and exfiltrate the user’s data.
Read more
Hackers now abuse BaseCamp for free malware hosting
Phishing campaigns have started to use Basecamp as part of malicious phishing campaigns that distribute malware or steal your login credentials. Basecamp is a web-based project
Read moreADS goes here!
If you don't see it, then please turn OFFAD blocker for this website.
Our ads are not aggressive and help us
pay for the server and coffee.
THANK YOU for your support!