New APT targets South and Southeast Asia with custom-written backdoor
Lancefly has been deploying the Merdoor backdoor in highly targeted attacks since 2018 to establish persistence, execute commands, and perform keylogging on corporate networks.
Lancefly has been deploying the Merdoor backdoor in highly targeted attacks since 2018 to establish persistence, execute commands, and perform keylogging on corporate networks.
The exploitation of the vulnerability leads to a cross-site scripting (XSS) attack in which a threat actor can inject malicious scripts, redirects, advertisements, and other forms of URL manipulation into a victim site.
While the attacks have not been attributed to any specific threat actor, it is likely that a Russian group is responsible for the attacks, according to researchers at Bitdefender.
Payouts from ransomware victims declined by 38% in 2022, which has prompted hackers to adopt more professional and corporate tactics to ensure higher returns.
Qualcomm's acquisition of Israel-based Autotalks is meant to bolster the Snapdragon Digital Chassis product line for vehicle-to-everything (V2X) communications.
The vulnerabilities comprise url formatting bypasses and an unrestricted file upload functionality in the API Management developer portal, according to cybersecurity firm Ermetic.
Chinese state-sponsored threat actor Alloy Taurus has introduced a new variant of PingPull malware, designed to target Linux systems, Palo Alto Networks said in its research.
Microsoft is trying to come up with a short-term and long-term fix after users could not use the search functionality in multiple Microsoft 365 services.
Group-IB researchers have also identified a previously unknown command and control infrastructure and a PowerShell script that APT group MuddyWater is using for its cyberespionage and IP theft attacks.
Google has released Chrome version 112.0.5615.121 to address a vulnerability that can allow malicious code execution on Windows, Mac, and Linux systems.
Amazon web services and Amazon voice assistant Alexa were back online after an outage on Sunday that lasted over three hours.
There has been an increase in discussions and trades related to ChatGPT on the dark web since March, according to Check Point.
The vulnerability identified as CVE-2023-28252 is a privilege escalation flaw affecting the Windows Common Log File System driver.
Alibaba Cloud's Tongyi Qianwen is a large language model that will act as a ChatGPT-like interface for all its business apps, including the DingTalk workplace communications app and the Tmall Genie personal assistant speaker.
3CX will be releasing an update for the DesktopApp in the next few hours; meanwhile, users are urged to use the PWA Client instead.