Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques

/in

Cybersecurity researchers have shed light on a new remote access trojan called NonEuclid that allows bad actors to remotely control compromised Windows systems.
“The NonEuclid remote access trojan (RAT), developed in C#, is a highly sophisticated malware offering unauthorised remote access with advanced evasion techniques,” Cyfirma said in a technical analysis published last week.
“It employs

The Hacker News – ​Read More

New PayPal Phishing Scam Exploits MS365 Tools and Genuine-Looking Emails

/in

Fortinet uncovers a new PayPal phishing scam exploiting legitimate platform features. Learn how this sophisticated attack works and how to protect yourself from falling victim.

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Cybersecurity Funding Reached $9.5 Billion in 2024: Report

/in

Cybersecurity firms raised $9.5 billion in over 300 funding rounds in 2024, with Wiz scoring the largest investment at $1 billion.

The post Cybersecurity Funding Reached $9.5 Billion in 2024: Report appeared first on SecurityWeek.

SecurityWeek – ​Read More

UN aviation agency ICAO confirms its recruitment database was hacked

/in

ICAO said that a previously reported data breach involved “approximately 42,000 recruitment application data records from April 2016 to July 2024.”

The Record from Recorded Future News – ​Read More

Insider Threat: Tackling the Complex Challenges of the Enemy Within

/in

The insider threat problem will worsen, and the solutions will widen, in the age of generative-AI.

The post Insider Threat: Tackling the Complex Challenges of the Enemy Within appeared first on SecurityWeek.

SecurityWeek – ​Read More

Scammers Impersonate Authorities to Swipe OTPs with Remote Access Apps

/in

SUMMARY Cybersecurity researchers at Group-IB have discovered a sophisticated refund scam where scammers are using remote access tools…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS Attacks

/in

A Mirai botnet variant has been found exploiting a newly disclosed security flaw impacting Four-Faith industrial routers since early November 2024 with the goal of conducting distributed denial-of-service (DDoS) attacks.
The botnet maintains approximately 15,000 daily active IP addresses, with the infections primarily scattered across China, Iran, Russia, Turkey, and the United States.

The Hacker News – ​Read More

Chrome 131, Firefox 134 Updates Patch High-Severity Vulnerabilities

/in

Chrome and Firefox updates released this week resolve high-severity vulnerabilities in the two popular browsers.

The post Chrome 131, Firefox 134 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek.

SecurityWeek – ​Read More

First Android Update of 2025 Patches Critical Code Execution Vulnerabilities

/in

This year’s first batch of monthly security updates for Android resolves 36 vulnerabilities, including critical remote code execution flaws.

The post First Android Update of 2025 Patches Critical Code Execution Vulnerabilities appeared first on SecurityWeek.

SecurityWeek – ​Read More

FCC Launches ‘Cyber Trust Mark’ for IoT Devices to Certify Security Compliance

/in

The U.S. government on Tuesday announced the launch of the U.S. Cyber Trust Mark, a new cybersecurity safety label for Internet-of-Things (IoT) consumer devices.
“IoT products can be susceptible to a range of security vulnerabilities,” the U.S. Federal Communications Commission (FCC) said. “Under this program, qualifying consumer smart products that meet robust cybersecurity standards will bear

The Hacker News – ​Read More