A Russian state-sponsored hacker group, known as APT29 or "Cozy Bear," has been caught leveraging exploits initially developed by commercial spyware vendors NSO Group and Intellexa. This latest campaign, which ran from November 2023 to July 2024, targeted visitors to Mongolian government websites
Latest News: Cybersecurity
A new Android malware has been identified by cybersecurity researchers — NGate, which steals NFC (Near Field Communication) data from physical payment cards to enable counterfeit activities. The malware has been found targeting three banks in Czechia since November 2023. NGate is derived from
Cybercriminals are turning to Progressive Web Applications (PWAs) to infiltrate mobile devices and steal banking credentials. These web-based apps, which are designed to function like native applications, have been exploited to bypass security measures on both iOS and Android devices. According
A disinformation campaign is exploiting Microsoft Azure and OVH cloud services, along with Google search, to spread malware. Android users receive Google notifications regarding topics they’ve previously searched for, which direct them to fake news stories about public figures. Some of these
Georgy Kavzharadze, a 27-year-old Russian citizen, was sentenced to 40 months in US federal prison for selling stolen financial information, login credentials, and other personally identifying information on the notorious dark web marketplace Slilpp. Over the course of five years, Kavzharadze sold
North Korean cybercriminal groups Kimsuky (APT43) and Andariel (APT45) exploited a VPN software update flaw in South Korea to install malware and steal trade secrets from construction and machinery companies. The malicious actors are believed to be operating in connection with North Korea’s
A significant flaw in Microsoft Windows' update architecture has been discovered that allows attackers to downgrade fully patched systems, reintroducing old vulnerabilities. SafeBreach Labs researcher Alon Leviev unearthed this exploit. The vulnerability, showcased at the Black Hat 2024
A recent cyberattack on Mobile Guardian, a UK-based provider of mobile device management (MDM) software, has left thousands of students worldwide without access to their school work and files. The attack, which occurred on August 4th, resulted in unauthorized access to iOS and ChromeOS devices,
A ransomware attack on OneBlood, a prominent nonprofit blood donation organization, has disrupted blood supplies to over 300 hospitals across the southeastern United States. The cyberattack, which was first reported by CNN, has forced OneBlood to revert to manual processes, significantly slowing
Five apps on the Google Play Store have been spreading a sophisticated spyware known as Mandrake for years, according to a report from cybersecurity firm Kaspersky. The spyware, which has been active since at least 2020, re-emerged in 2022 after seemingly disappearing for a few years. It was hidden