In a concerning development, cybersecurity researchers at Trellix have uncovered a sophisticated malware campaign that exploits a legitimate antivirus driver to bypass system protections. The malware, identified as “kill-floor.exe,” leverages the Avast Anti-Rootkit driver (aswArPot.sys) to gain kernel-level access, effectively…
DragonForce Attacks Critical Infrastructure to Exfiltrate Data and Halt Operations
The DragonForce ransomware group has launched a significant cyberattack on critical infrastructure in Saudi Arabia, targeting a prominent real estate and construction company in Riyadh. This marks the first time the group has targeted a major enterprise in the Kingdom,…
Threat Actors Attack Job Seekers of Fortune 500 Companies to Steal Personal Details
In Q3 2024, Cofense Intelligence uncovered a targeted spear-phishing campaign aimed at employees working in social media, marketing, and related roles. The attackers impersonated Fortune 500 companies, including Meta, Coca-Cola, and PayPal, to lure victims into applying for fake job…
Unpatched Vulnerabilities Attract Cybercriminals as EDR Visibility Remains Limited
Cyber adversaries have evolved into highly organized and professional entities, mirroring the operational efficiency of legitimate businesses, according to the CrowdStrike 2025 Global Threat Report. The report highlights a significant shift in the cyber threat landscape during 2024, with attackers…
Squidoor: Multi-Vector Malware Exploiting Outlook API, DNS & ICMP Tunneling for C2
A newly identified malware, dubbed “Squidoor,” has emerged as a sophisticated threat targeting government, defense, telecommunications, education, and aviation sectors in Southeast Asia and South America. Attributed to a suspected Chinese threat actor under the activity cluster CL-STA-0049, Squidoor employs…
CISA Releases Two Industrial Control Systems Advisories
CISA released two Industrial Control Systems (ICS) advisories on February 25, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-056-01 Rockwell Automation PowerFlex 755 ICSMA-25-030-01 Contec Health CMS8000 Patient Monitor (Update A) CISA…
Schneider Electric Communication Modules for Modicon M580 and Quantum Controllers
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: Communication modules for Modicon M580 and Quantum controllers Vulnerability: Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a stack…
Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Dario Health Equipment: USB-C Blood Glucose Monitoring System Starter Kit Android Application, Application Database and Internet-based Server Infrastructure Vulnerabilities: Exposure of Private Personal Information to an…
​​2025 Unit 42 Incident Response Report — Attacks Shift to Disruption
The 2025 Incident Response Report revealed that speed, sophistication and scale of attacks have reached unprecedented levels with AI-assisted threats. The post ​​2025 Unit 42 Incident Response Report — Attacks Shift to Disruption appeared first on Palo Alto Networks Blog.…
Nach Vorwürfen von Amnesty: Cellebrite entzieht Serbien eigene Forensik-Tools
Cellebrite ermöglicht Strafverfolgungsbehörden den Zugriff auf Mobilgeräte. Serbien soll das gegen die Zivilgesellschaft eingesetzt haben und wurde suspendiert. Dieser Artikel wurde indexiert von heise security News Lesen Sie den originalen Artikel: Nach Vorwürfen von Amnesty: Cellebrite entzieht Serbien eigene Forensik-Tools
PolarEdge: Unveiling an uncovered ORB network
This blog post analyzes the PolarEdge backdoor and its associated botnet, offering insights into the adversary’s infrastructure. La publication suivante PolarEdge: Unveiling an uncovered ORB network est un article de Sekoia.io Blog. This article has been indexed from Sekoia.io Blog…
Amazon Joins Quantum Race With New ‘Ocelot’ Chip
Amazon Web Services says new quantum computing chip Ocelot is a breakthrough in building fault-tolerant quantum computers This article has been indexed from Silicon UK Read the original article: Amazon Joins Quantum Race With New ‘Ocelot’ Chip
Hackers Impersonate Taiwan’s Tax Authority to Deploy Winos 4.0 Malware
FortiGuard Labs discovers Winos 4.0 malware targeting Taiwan via phishing. Learn how this advanced threat steals data and… This article has been indexed from Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News Read the original article: Hackers Impersonate…
NordLayer set to release a new security-focused browser for the enterprise
How much of your work is done in your browser? And is that browser truly secure? This article has been indexed from Latest stories for ZDNET in Security Read the original article: NordLayer set to release a new security-focused browser…
Archipelo comes out of stealth with $12M funding to secure human and AI-driven code
When it comes to AI software, you can build something clever, but that’s not always the same as building something that is secure. With so much software now getting written by AI, having a window into its security can be…
Hacker Behind Over 90 Data Leaks Arrested in Thailand
A Singaporean man accused of being a hacker responsible for over 90 data leaks has been arrested in Thailand. The post Hacker Behind Over 90 Data Leaks Arrested in Thailand appeared first on SecurityWeek. This article has been indexed from…
Nach Vorwürfen von Amnesty: Cellebrite arbeitet nicht mehr mit Serbien zusammen
Cellebrite ermöglicht Strafverfolgungsbehörden den Zugriff auf Mobilgeräte. Serbien soll das gegen die Zivilgesellschaft eingesetzt haben und wurde suspendiert. Dieser Artikel wurde indexiert von heise security News Lesen Sie den originalen Artikel: Nach Vorwürfen von Amnesty: Cellebrite arbeitet nicht mehr mit…
From Accidental Hacker to Cybersecurity Champion: The Story of Dr. Katie Paxton-Fear, Bug Bounty Hunter with HackerOne
Picture this: A young computer scientist accidentally stumbles into a live hacking event and walks away having found vulnerabilities in Uber’s system. This isn’t the plot of a tech thriller – it’s the real-life story of Dr. Katie Paxton-Fear, age…
Survey: Nearly Half of Data Breaches Involved Third-Party Remote Access
A survey of 1,942 IT and IT security practitioners finds nearly half (47%) work for organizations that have experienced a data breach or cyberattack in the past 12 months that involved a third-party that has access to their network. The…
IT Security News Hourly Summary 2025-02-27 18h : 13 posts
13 posts were published in the last hour 17:5 : Survey: Nearly Half of Data Breaches Involved Third-Party Remote Access 17:5 : DragonForce Ransomware Hits Saudi Firm, 6TB Data Stolen 16:34 : GPT-4.5 steht in den Startlöchern – warum das…
DragonForce Ransomware Hits Saudi Firm, 6TB Data Stolen
DragonForce ransomware attacks Saudi firms stealing 6TB data, escalating cyber threats in real estate This article has been indexed from www.infosecurity-magazine.com Read the original article: DragonForce Ransomware Hits Saudi Firm, 6TB Data Stolen
GPT-4.5 steht in den Startlöchern – warum das nur ein Zwischenschritt ist
Nutzer:innen des Pro-Abos von ChatGPT haben einen Hinweis auf den baldigen Start von GPT-4.5 („Orion“) entdeckt. Ausprobieren ließ sich die neue GPT-Version noch nicht. Viel gespannter sind ChatGPT-Fans aber ohnehin auf etwas ganz Anderes. Dieser Artikel wurde indexiert von t3n.de…
Global Threat Report: Cyberspionage und KI-Betrug nehmen rasant zu
Hacker:innen setzten verstärkt auf KI – allein die Voice-Phishing-Vorfälle haben sich mehr als vervierfacht. Dass IT-Teams dabei immer weniger Zeit zum Reagieren bleibt, zeigt jetzt ein aktueller Bericht. Dieser Artikel wurde indexiert von t3n.de – Software & Entwicklung Lesen Sie…
How Kyocera’s CISO tackles the threat of cyber risk during AI adoption
Kyocera CISO Andrew Smith explains how he’s responded to the cyber risks associated with AI and how businesses can start implementing it. Ever since AI’s meteoric rise to prominence following the release of ChatGPT in November 2022, the technology has…