New Cybercrime Group Exploits Microsoft Teams for Data Theft
A newly identified threat group is using social engineering tactics and custom malware to compromise organizations via Microsoft Teams, according to Google's Threat Intelligence Group.
Category Security & Privacy
Ciberseguridad, vulnerabilidades y privacidad
Discovery of Pre-Stuxnet Malware Fast16 Highlights Early Cyber Sabotage Efforts
Researchers have uncovered a previously undocumented malware, fast16, that predates Stuxnet and targets engineering software, raising questions about early cyber sabotage capabilities.
Tropic Trooper Leverages Trojanized Software for Targeted Cyber Attacks
A new campaign attributed to the Tropic Trooper group employs a compromised version of SumatraPDF to deploy malware targeting Chinese-speaking individuals.
malware: Malicious FakeWallet Apps Discovered on Apple App Store Targeting Cryptocurrency Users
A set of 26 malicious applications, known as FakeWallet, has been found on the Apple App Store, designed to impersonate legitimate cryptocurrency wallets and steal sensitive user information.
AI agents: Addressing the AI Agent Authority Gap in Enterprise Security
The emergence of AI agents in enterprise environments has highlighted a critical gap in authority delegation, necessitating a reevaluation of identity governance.
UNC6692 Exploits Microsoft Teams for Malware Deployment
A threat group known as UNC6692 has been observed using social engineering tactics via Microsoft Teams to deploy malware, targeting senior employees and leveraging impersonation techniques.
Sophisticated Job Scam Targets Developer with Malicious Code
A Serbian web developer fell victim to a sophisticated job scam involving a fake blockchain company, leading to a significant security breach.
Malicious KICS Docker Images and VS Code Extensions Compromise Checkmarx Supply Chain
Recent findings reveal that malicious Docker images and Visual Studio Code extensions have compromised Checkmarx's software supply chain, posing significant risks to users.
SystemBC C2 Server Exposes Over 1,570 Victims Linked to The Gentlemen Ransomware
Recent research has uncovered a significant botnet associated with The Gentlemen ransomware operation, revealing over 1,570 compromised victims worldwide due to the deployment of SystemBC malware.
Cisco SD-WAN Vulnerabilities Under Active Exploitation
CISA has issued an urgent warning regarding three vulnerabilities in Cisco's Catalyst SD-WAN Manager, urging federal agencies to apply patches within four days.
