A recent investigation by cybersecurity experts has unveiled a series of advanced cyberattacks orchestrated by the notorious Advanced Persistent Threat (APT) group known as “Space Pirates.” Leveraging their customized malware arsenal, including the LuckyStrike Agent backdoor, the group has been…
Category: EN
Paragon Partition Manager Vulnerabilities Allow Attackers to Escalate Privileges and Trigger DoS Attacks
Security researchers have uncovered five significant vulnerabilities in Paragon Partition Manager’s BioNTdrv.sys driver, affecting versions prior to 2.0.0. These flaws, identified as CVE-2025-0285, CVE-2025-0286, CVE-2025-0287, CVE-2025-0288, and CVE-2025-0289, pose serious security risks, enabling attackers to escalate privileges to SYSTEM level…
North Korean IT Workers Hide Their IPs Using Astrill VPN
Security researchers have uncovered new evidence that North Korean threat actors, particularly the Lazarus Group, are actively using Astrill VPN to conceal their true IP addresses during cyberattacks and fraudulent IT worker schemes. Silent Push, a cybersecurity firm, recently acquired…
Njrat Exploits Microsoft Dev Tunnels for C2 Communication
A new campaign involving the notorious remote access trojan (RAT) Njrat has been uncovered, leveraging Microsoft’s Dev Tunnels service for command-and-control (C2) communication. This service, intended to help developers securely expose local services to the internet for testing and debugging,…
Hackers Abused Google and PayPal’s Infrastructure to Steal Users Personal Data
Cybersecurity researchers have uncovered a sophisticated phishing campaign leveraging Google Ads and PayPal’s infrastructure to deceive users and steal sensitive personal data. The attackers exploited vulnerabilities in Google’s ad policies and PayPal’s “no-code checkout” feature to create fraudulent payment links…
Serbian student activist’s phone hacked using Cellebrite zero-day exploit
Amnesty International reports that a Cellebrite zero-day exploit was used to unlock a Serbian activist’s Android phone. Amnesty International reported that a Cellebrite zero-day exploit was used to unlock the Android smartphone of a Serbian activist. In a statement published on 25…
Mobile malware evolution in 2024
The most notable mobile threats of 2024, and statistics on Android-specific malware, adware and potentially unwanted software. This article has been indexed from Securelist Read the original article: Mobile malware evolution in 2024
Outpost24 introduces CyberFlex to streamline attack surface management and pen testing
Outpost24 has launched Outpost24 CyberFlex, a comprehensive application security solution that combines Attack Surface Management (ASM) and Penetration Testing as a Service (PTaaS) to manage and secure an organization’s external-facing applications, and deliver enhanced visibility in a flexible and agile…
ICO Launches TikTok Investigation Over Use of Children’s Data
The Information Commissioner’s Office is now investigating how TikTok uses 13–17-year-olds’ personal information This article has been indexed from www.infosecurity-magazine.com Read the original article: ICO Launches TikTok Investigation Over Use of Children’s Data
TechRepublic Premium Editorial Calendar: Policies, Hiring Kits, and Glossaries for Download
TechRepublic Premium content helps you solve your toughest IT issues and jump-start your career or next project. This article has been indexed from Security | TechRepublic Read the original article: TechRepublic Premium Editorial Calendar: Policies, Hiring Kits, and Glossaries for…
Vidar & StealC 2.0 Released by Threat Actors With a Complete New Build
Threat actors have simultaneously released major updates for two prominent info-stealers, Vidar and StealC, marking their transition to version 2.0. These updates, announced in late February 2025, introduce redesigned builds, modernized features, and enhanced capabilities. However, cybersecurity experts have uncovered…
Governments can’t seem to stop asking for secret backdoors
Cut off one head and 100 grow back? Decapitation may not be the way to go Opinion With Apple pulling the plug on at-rest end-to-end encryption (E2EE) for UK users, and Signal threatening to pull out of Sweden if that government…
BYOVD Attacks Exploit Zero-Day in Paragon Partition Manager
Threat actors are exploiting a zero-day bug in Paragon Partition Manager’s BioNTdrv.sys driver during ransomware attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: BYOVD Attacks Exploit Zero-Day in Paragon Partition Manager
OpenSSL 3.5 Alpha Repository Freeze Approaching
The OpenSSL Project is announcing the upcoming release of OpenSSL 3.5 Alpha, scheduled for March 11, 2025. As a result, the repository will be frozen before the release on March 6, 2025. The included features can be found in the…
Black Basta and Cactus Ransomware Groups Add BackConnect Malware to Their Arsenal
In this blog entry, we discuss how the Black Basta and Cactus ransomware groups utilized the BackConnect malware to maintain persistent control and exfiltrate sensitive data from compromised machines. This article has been indexed from Trend Micro Research, News and…
DeepSeek Open-Sources AI Model Training Details
Chinese AI start-up DeepSeek releases series of open source projects revealing details of AI model optimisation methods This article has been indexed from Silicon UK Read the original article: DeepSeek Open-Sources AI Model Training Details
Tencent Releases ‘Turbo’ AI Model To Counter DeepSeek
Tencent says Hunyuan Turbo S delivers high-speed responses, by contrast to DeepSeek’s R1 that needs to ‘think for a while’ This article has been indexed from Silicon UK Read the original article: Tencent Releases ‘Turbo’ AI Model To Counter DeepSeek
Agentic AI: Redefining the Future of Autonomy in Business
The evolution of artificial intelligence (AI) agents signals a profound transformation in how businesses operate. Unlike traditional AI models that process and respond to queries, Google defines that “Agents are autonomous and can act independently of human intervention.” At the…
The Enterprise Strikes Back: Microsoft Exposes the Architects of AI Abuse
Microsoft has amended recent civil litigation to name key developers of malicious tools designed to bypass AI safeguards, including those in Azure OpenAI Service. The legal action targets four individuals—Arian Yadegarnia (Iran), Alan Krysiak (UK), Ricky Yuen (Hong Kong), and…
Qilin Claims Lee Enterprises Ransomware Attack
Notorious ransomware gang Qilin has claimed responsibility for the 3 February attack on Lee Enterprises, an American media company. On its data leak site, Qilin claimed to have stolen 350 GB of data, including “investor records, financial arrangements that raise…