RESURGE Malware Exploits Ivanti Flaw with Rootkit and Web Shell Features

/in

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has shed light on a new malware called RESURGE that has been deployed as part of exploitation activity targeting a now-patched security flaw in Ivanti Connect Secure (ICS) appliances.
“RESURGE contains capabilities of the SPAWNCHIMERA malware variant, including surviving reboots; however, RESURGE contains distinctive commands that

The Hacker News – ​Read More

Don’t make this USB mistake! Protect your data with this discounted encrypted gadget

/in

Kingston’s IronKey is one of the most secure USBs you can buy, from a military-standardized build to a complex passphrase mode.

Latest stories for ZDNET in Security – ​Read More

X (Twitter) Largest Data Breach Ever? 2.8 Billion User Info Leaked

/in

Massive Twitter (X) data breach exposes details of 2.8 billion users; alleged insider leak surfaces with no official response from the company.

Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – ​Read More

Top Trump Officials’ Passwords and Personal Phone Numbers Discovered Online

/in

Plus: Alleged Snowflake hacker will be extradited to US, internet restrictions create an information vacuum in Myanmar, and London gets its first permanent face recognition cameras.

Security Latest – ​Read More

New Android Trojan Crocodilus Abuses Accessibility to Steal Banking and Crypto Credentials

/in

Cybersecurity researchers have discovered a new Android banking malware called Crocodilus that’s primarily designed to target users in Spain and Turkey.
“Crocodilus enters the scene not as a simple clone, but as a fully-fledged threat from the outset, equipped with modern techniques such as remote control, black screen overlays, and advanced data harvesting via accessibility logging,”

The Hacker News – ​Read More

SquareX Discloses Browser-Native Ransomware that Puts Millions at Risk

/in

Palo Alto, USA, 29th March 2025, CyberNewsWire

Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – ​Read More

BlackLock Ransomware Exposed After Researchers Exploit Leak Site Vulnerability

/in

In what’s an instance of hacking the hackers, threat hunters have managed to infiltrate the online infrastructure associated with a ransomware group called BlackLock, uncovering crucial information about their modus operandi in the process.
Resecurity said it identified a security vulnerability in the data leak site (DLS) operated by the e-crime group that made it possible to extract

The Hacker News – ​Read More

Evilginx Tool (Still) Bypasses MFA

/in

Based on the open source NGINX Web server, the malicious tool allows threat actors to steal user credentials and session tokens.

darkreading – ​Read More

New Morphing Meerkat Phishing Kit Exploits DNS to Spoof 100+ Brands

/in

A recent analysis published by Infoblox reveals a sophisticated phishing operation, dubbed Morphing Meerkat, actively exploiting DNS vulnerabilities…

Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – ​Read More

Oracle Still Denies Breach as Researchers Persist

/in

Evidence suggests an attacker gained access to the company’s cloud infrastructure environment, but Oracle insists that didn’t happen.

darkreading – ​Read More