An Android infostealer malware called FireScam disguised as a fake Telegram Premium app was discovered being distributed through a GitHub.io phishing site that impersonates the RuStore, a popular app store used in Russia. Cyfirma researchers explained Dec. 30 that the FireScam malware looks to exfiltrate sensitive Android data, including notifications, messages, and other app data, … Read more
In its lust for stealing cryptocurrency and sensitive information, North Korean hackers are disguising themselves as remote IT workers, recruiters, and even venture capitalists. The increasingly sophisticated tactics being used by North Korea’s hackers was the topic at last month’s Cyberwarcon conference in Washington DC, where researchers described how billions of dollars in stolen cryptocurrency … Read more
Nov 23, 2024Ravie LakshmananArtificial Intelligence / Cryptocurrency The North Korea-linked threat actor known as Sapphire Sleet is estimated to have stolen more than $10 million worth of cryptocurrency as part of social engineering campaigns orchestrated over a six-month period. These findings come from Microsoft, which said that multiple threat activity clusters with ties to the … Read more
Oct 20, 2024Ravie LakshmananVulnerability / Email Security Unknown threat actors have been observed attempting to exploit a now-patched security flaw in the open-source Roundcube webmail software as part of a phishing attack designed to steal user credentials. Russian cybersecurity company Positive Technologies said it discovered last month that an email was sent to an unspecified … Read more
Sep 09, 2024Ravie LakshmananVulnerability / {Hardware} Safety A novel side-channel assault has been discovered to leverage radio alerts emanated by a tool’s random entry reminiscence (RAM) as a knowledge exfiltration mechanism, posing a risk to air-gapped networks. The method has been codenamed RAMBO by Dr. Mordechai Guri, the pinnacle of the Offensive Cyber Analysis Lab … Read more
