This AI-Powered Cybercrime Service Bundles Phishing Kits with Malicious Android Apps

/in

A Spanish-speaking cybercrime group named GXC Team has been observed bundling phishing kits with malicious Android applications, taking malware-as-a-service (MaaS) offerings to the next level.
Singaporean cybersecurity company Group-IB, which has been tracking the e-crime actor since January 2023, described the crimeware solution as a “sophisticated AI-powered phishing-as-a-service platform”

The Hacker News – ​Read More

Malicious Inauthentic CrowdStrike Falcon Crash Reporter Installer Distributed to German Entity

/in

An unidentified threat actor is taking advantage of the recent Falcon Sensor update issues to distribute fake installers via a fraudulent website impersonating a German entity.

Cyware News – Latest Cyber News – ​Read More

Distributing Security Responsibilities (Responsibly)

/in

Outlining the wider organization’s proactive role in fortifying the security program allows the security team to focus on the most pressing issues that only they can solve.

darkreading – ​Read More

ISC Releases Security Advisories for BIND 9

/in

The Internet Systems Consortium (ISC) has released patches to fix multiple security vulnerabilities in the BIND 9 DNS software suite that could lead to denial-of-service attacks.

Cyware News – Latest Cyber News – ​Read More

US Indicts Alleged North Korean State Hacker for Ransomware Attacks on Hospitals

/in

The US has indicted a North Korean state hacker for ransomware attacks on hospitals and healthcare companies. The hacker, Rim Jong Hyok, is a member of the Andariel Unit within North Korea’s intelligence agency.

Cyware News – Latest Cyber News – ​Read More

CrowdStrike Disruption Direct Losses to Reach $5.4B for Fortune 500, Study Finds

/in

A recent study by Parametrix has found that the global IT outage linked to CrowdStrike will result in at least $5.4 billion in direct financial losses for Fortune 500 companies, excluding Microsoft.

Cyware News – Latest Cyber News – ​Read More

Critical ServiceNow RCE Flaws Actively Exploited to Steal Credentials

/in

ServiceNow RCE vulnerabilities are being actively exploited to steal credentials. Threat actors are using publicly available exploits to target government agencies and private firms for data theft.

Cyware News – Latest Cyber News – ​Read More

I’ve tried a zillion desktop distros – it doesn’t get any better than Linux Mint 22

/in

Linux Mint’s latest release continues its tradition of excellence. It’s easy to learn and use, faster than Windows, and runs on a thrift-store PC. What more can you ask for?

Latest news – ​Read More

Thread Name-Calling: Using Thread Name for Offense

/in

Process Injection is a vital technique used by attackers to evade detection and escalate privileges. Thread Name-Calling has emerged as a new injection technique that abuses Windows APIs for thread descriptions to bypass endpoint protection products.

Cyware News – Latest Cyber News – ​Read More

Threat Actors Exploit Fresh ServiceNow Vulnerabilities in Attacks

/in

Threat actors have started exploiting critical-severity vulnerabilities in ServiceNow shortly after public disclosure.

The post Threat Actors Exploit Fresh ServiceNow Vulnerabilities in Attacks appeared first on SecurityWeek.

SecurityWeek – ​Read More