Pakistan-Linked Hackers Expand Targets in India with CurlBack RAT and Spark RAT

/in

A threat actor with ties to Pakistan has been observed targeting various sectors in India with various remote access trojans like Xeno RAT, Spark RAT, and a previously undocumented malware family called CurlBack RAT.
The activity, detected by SEQRITE in December 2024, targeted Indian entities under railway, oil and gas, and external affairs ministries, marking an expansion of the hacking crew’s

The Hacker News – ​Read More

Morocco Investigates Social Security Agency Data Leak

/in

A threat actor has claimed responsibility for the alleged politically motivated attack and has uploaded the stolen data to a Dark Web forum.

darkreading – ​Read More

Homeland Security Email Tells a US Citizen to ‘Immediately’ Self-Deport

/in

An email sent by the Department of Homeland Security instructs people in the US on a temporary legal status to leave the country. But who the email actually applies to—and who actually received it—is far from clear.

Security Latest – ​Read More

China Secretly (and Weirdly) Admits It Hacked US Infrastructure

/in

Plus: The Department of Homeland Security begins surveilling immigrants’ social media, President Donald Trump targets former CISA director who refuted his claims of 2020 election fraud, and more.

Security Latest – ​Read More

5 warning signs that your phone’s been hacked – and how to fight back

/in

Here are the biggest warning signs that your phone may be compromised and the secret codes that can tell you all about it.

Latest stories for ZDNET in Security – ​Read More

Pall Mall Process Progresses but Leads to More Questions

/in

Nations continue to sign the Code of Practice for States in an effort to curb commercial spyware, yet implementation and enforcement concerns have yet to be figured out.

darkreading – ​Read More

SaaS Security Essentials: Reducing Risks in Cloud Applications

/in

As organizations increasingly rely on SaaS applications to run their operations, securing them has become a necessity. Without…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

Paper Werewolf Threat Actor Targets Flash Drives With New Malware

/in

The threat actor, also known as Goffee, has been active since at least 2022 and has changed its tactics and techniques over the years while targeting Russian organizations.

darkreading – ​Read More

Russia’s Storm-2372 Hits Orgs with MFA Bypass via Device Code Phishing

/in

Russian APT group Storm-2372 employs device code phishing to bypass Multi-Factor Authentication (MFA). Targets include government, technology, finance,…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

Financial Fraud, With a Third-Party Twist, Dominates Cyber Claims

/in

The most damaging attacks continue to be ransomware, but financial fraud claims are more numerous — and both are driven by increasing third-party breaches.

darkreading – ​Read More