Your blog category
The maintainers of the Python Package Index (PyPI) repository briefly suspended new user sign-ups following an influx of malicious projects uploaded as part of a typosquatting campaign. It said “new project creation… Read More »PyPI Halts Sign-Ups Amid Surge of Malicious Package Uploads Targeting Developers
The Police of Finland (aka Poliisi) has formally accused a Chinese nation-state actor tracked as APT31 for orchestrating a cyber attack targeting the country’s Parliament in 2020. The intrusion, per… Read More »Finland Blames Chinese Hacking Group APT31 for Parliament Cyber Attack
A Linux version of a multi-platform backdoor called DinodasRAT has been detected in the wild targeting China, Taiwan, Turkey, and Uzbekistan, new findings from Kaspersky reveal. DinodasRAT, also known as XDealer, is a C++-based… Read More »Linux Version of DinodasRAT Spotted in Cyber Attacks Across Several Countries
A sophisticated phishing-as-a-service (PhaaS) platform called Darcula has set its sights on organizations in over 100 countries by leveraging a massive network of more than 20,000 counterfeit domains to help cyber criminals… Read More »Darcula Phishing Network Leveraging RCS and iMessage to Evade Detection
Cybersecurity researchers from ETH Zurich have developed a new variant of the RowHammer DRAM (dynamic random-access memory) attack that, for the first time, successfully works against AMD Zen 2 and… Read More »New ZenHammer Attack Bypasses Rowhammer Defenses on AMD CPUs
In the whirlwind of modern software development, teams race against time, constantly pushing the boundaries of innovation and efficiency. This relentless pace is fueled by an evolving tech landscape, where… Read More »Behind the Scenes: The Art of Safeguarding Non-Human Identities
Considering the ever-changing state of cybersecurity, it’s never too late to ask yourself, “am I doing what’s necessary to keep my organization’s web applications secure?” The continuous evolution of technology… Read More »New Webinar: Avoiding Application Security Blind Spots with OPSWAT and F5
In June 2017, a study of more than 3,000 Massachusetts Institute of Technology (MIT) students published by the National Bureau for Economic Research (NBER) found that 98% of them were willing to give away… Read More »Telegram Offers Premium Subscription in Exchange for Using Your Number to Send OTPs
Indian government entities and energy companies have been targeted by unknown threat actors with an aim to deliver a modified version of an open-source information stealer malware called HackBrowserData and… Read More »Hackers Hit Indian Defense, Energy Sectors with Malware Posing as Air Force Invite
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a security flaw impacting the Microsoft Sharepoint Server to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation in… Read More »CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability