Researchers at Trellix Advanced Research Center spotted fake AV sites used to distribute info-stealers. The malicious websites hosted sophisticated malicious files such as APK, EXE, and Inno setup installer, including spying and stealer capabilities.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-05-27 11:07:492024-05-27 11:07:49Fake Antivirus Websites Used to Distribute Info-Stealer Malware
Europe’s leading research universities should work more closely with the continent’s intelligence agencies to help secure their research from being stolen by hostile states, EU member states recommended this week.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-05-27 11:07:492024-05-27 11:07:49EU Wants Universities to Work with Intelligence Agencies to Protect Their Research
According to a report by Malwarebytes, cybercriminals prepared for the product launch, setting up malicious advertisements on Google Search to lure users looking to download the new web browser.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-05-27 11:07:492024-05-27 11:07:49Arc Browser’s Windows Launch Targeted by Google Ads Malvertising
Cybersecurity researchers are alerting of phishing campaigns that abuse Cloudflare Workers to serve phishing sites that are used to harvest users’ credentials associated with Microsoft, Gmail, Yahoo!, and cPanel Webmail.
The attack method, called transparent phishing or adversary-in-the-middle (AitM) phishing, “uses Cloudflare Workers to act as a reverse proxy server for a
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-05-27 10:06:342024-05-27 10:06:34New Tricks in the Phishing Playbook: Cloudflare Workers, HTML Smuggling, GenAI
Fail2Ban is an open-source tool that monitors log files and blocks IP addresses that exhibit repeated failed login attempts. It does this by updating firewall rules to reject new connections from those IP addresses for a configurable amount of time.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-05-27 10:06:332024-05-27 10:06:33Fail2Ban: Ban hosts that cause multiple authentication errors
Attackers could have exploited a now-mitigated critical vulnerability in the Replicate artificial intelligence platform to access private AI models and sensitive data, including proprietary knowledge and personally identifiable information.
Cisco states that there are no workarounds that address this vulnerability. The IT giant has confirmed that this vulnerability does not affect Adaptive Security Appliance (ASA) Software or Firepower Threat Defense (FTD) Software.
The Pakistan-nexus Transparent Tribe actor has been linked to a new set of attacks targeting Indian government, defense, and aerospace sectors using cross-platform malware written in Python, Golang, and Rust.
“This cluster of activity spanned from late 2023 to April 2024 and is anticipated to persist,” the BlackBerry Research and Intelligence Team said in a technical report
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-05-27 08:07:302024-05-27 08:07:30Pakistan-linked Hackers Deploy Python, Golang, and Rust Malware on Indian Targets
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-05-27 06:06:392024-05-27 06:06:396 Facts About How Interpol Fights Cybercrime
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-05-26 19:08:452024-05-26 19:08:45Shut the back door: Understanding prompt injection and minimizing risk
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Fake Antivirus Websites Used to Distribute Info-Stealer Malware
/in General NewsResearchers at Trellix Advanced Research Center spotted fake AV sites used to distribute info-stealers. The malicious websites hosted sophisticated malicious files such as APK, EXE, and Inno setup installer, including spying and stealer capabilities.
Cyware News – Latest Cyber News – Read More
EU Wants Universities to Work with Intelligence Agencies to Protect Their Research
/in General NewsEurope’s leading research universities should work more closely with the continent’s intelligence agencies to help secure their research from being stolen by hostile states, EU member states recommended this week.
Cyware News – Latest Cyber News – Read More
Arc Browser’s Windows Launch Targeted by Google Ads Malvertising
/in General NewsAccording to a report by Malwarebytes, cybercriminals prepared for the product launch, setting up malicious advertisements on Google Search to lure users looking to download the new web browser.
Cyware News – Latest Cyber News – Read More
New Tricks in the Phishing Playbook: Cloudflare Workers, HTML Smuggling, GenAI
/in General NewsCybersecurity researchers are alerting of phishing campaigns that abuse Cloudflare Workers to serve phishing sites that are used to harvest users’ credentials associated with Microsoft, Gmail, Yahoo!, and cPanel Webmail.
The attack method, called transparent phishing or adversary-in-the-middle (AitM) phishing, “uses Cloudflare Workers to act as a reverse proxy server for a
The Hacker News – Read More
Fail2Ban: Ban hosts that cause multiple authentication errors
/in General NewsFail2Ban is an open-source tool that monitors log files and blocks IP addresses that exhibit repeated failed login attempts. It does this by updating firewall rules to reject new connections from those IP addresses for a configurable amount of time.
Cyware News – Latest Cyber News – Read More
AI-as-a-Service Platform Patches Critical RCE Vulnerability
/in General NewsAttackers could have exploited a now-mitigated critical vulnerability in the Replicate artificial intelligence platform to access private AI models and sensitive data, including proprietary knowledge and personally identifiable information.
Cyware News – Latest Cyber News – Read More
High-Severity Flaw Affects Cisco Firepower Management Center
/in General NewsCisco states that there are no workarounds that address this vulnerability. The IT giant has confirmed that this vulnerability does not affect Adaptive Security Appliance (ASA) Software or Firepower Threat Defense (FTD) Software.
Cyware News – Latest Cyber News – Read More
Pakistan-linked Hackers Deploy Python, Golang, and Rust Malware on Indian Targets
/in General NewsThe Pakistan-nexus Transparent Tribe actor has been linked to a new set of attacks targeting Indian government, defense, and aerospace sectors using cross-platform malware written in Python, Golang, and Rust.
“This cluster of activity spanned from late 2023 to April 2024 and is anticipated to persist,” the BlackBerry Research and Intelligence Team said in a technical report
The Hacker News – Read More
6 Facts About How Interpol Fights Cybercrime
/in General NewsSo you think you know Interpol? Here are some key details of how this international law enforcement entity disrupts cybercrime worldwide.
darkreading – Read More
Shut the back door: Understanding prompt injection and minimizing risk
/in General NewsThe bottom line on prompt injection: Take it seriously and minimize the risk, but don’t let it hold you back. Read More
Security News | VentureBeat – Read More