Exploit

Hackers Exploit Signal’s Linked Devices Feature to Hijack Accounts via Malicious QR Codes – Go Health Pro

by
Hackers Exploit Signal’s Linked Devices Feature to Hijack Accounts via Malicious QR Codes – Go Health Pro

Feb 19, 2025Ravie LakshmananMobile Security / Cyber Espionage Multiple Russia-aligned threat actors have been observed targeting individuals of interest via the privacy-focused messaging app Signal to gain unauthorized access to their accounts. “The most novel and widely used technique underpinning Russian-aligned attempts to compromise Signal accounts is the abuse of the app’s legitimate ‘linked devices’ … Read more

Got a Microsoft Teams invite? Storm-2372 Gang Exploit Device Codes in Global Phishing Attacks – Go Health Pro

by
Got a Microsoft Teams invite? Storm-2372 Gang Exploit Device Codes in Global Phishing Attacks – Go Health Pro

Security experts have warned that a cybercriminal group has been running a malicious and inventive phishing campaign since August 2024 to break into organizations across Europe, North America, Africa, and the Middle East. The Russian group, known as Storm-2372, has targeted government and non-governmental organisations (NGOs), as well as firms working in IT, defence, telecoms, … Read more

Cybercriminals Exploit Onerror Event in Image Tags to Deploy Payment Skimmers – Go Health Pro

by
Cybercriminals Exploit Onerror Event in Image Tags to Deploy Payment Skimmers – Go Health Pro

Feb 18, 2025Ravie LakshmananMalware / Website Hacking Cybersecurity researchers have flagged a credit card stealing malware campaign that has been observed targeting e-commerce sites running Magento by disguising the malicious content within image tags in HTML code in order to stay under the radar. MageCart is the name given to a malware that’s capable of … Read more

Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet – Go Health Pro

by
Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet – Go Health Pro

Threat actors are exploiting an unspecified zero-day vulnerability in Cambium Networks cnPilot routers to deploy a variant of the AISURU botnet called AIRASHI to carry out distributed denial-of-service (DDoS) attacks. According to QiAnXin XLab, the attacks have leveraged the security flaw since June 2024. Additional details about the shortcomings have been withheld to prevent further … Read more

Python-Based Malware Powers RansomHub Ransomware to Exploit Network Flaws – Go Health Pro

by
Python-Based Malware Powers RansomHub Ransomware to Exploit Network Flaws – Go Health Pro

Jan 16, 2025Ravie LakshmananEndpoint Security / Ransomware Cybersecurity researchers have detailed an attack that involved a threat actor utilizing a Python-based backdoor to maintain persistent access to compromised endpoints and then leveraged this access to deploy the RansomHub ransomware throughout the target network. According to GuidePoint Security, initial access is said to have been facilitated … Read more

x