Cyber Security News

Cybercriminals increasingly leverage the TryCloudflare Tunnel to deliver Remote Access Trojans (RATs) in financially motivated attacks. TryCloudflare is a tool for developers to experiment with Cloudflare Tunnel without adding a site to Cloudflare’s DNS. Threat actors continually refine tactics to evade detection and enhance campaign efficacy, complicating attribution and necessitating ongoing analysis.  They exploit Cloudflare […]

The post Hackers Abuse TryCloudflare Service To Bypass Detection And Deliver Malware appeared first on Cyber Security News.

Phishing campaigns intensified in May 2024, with Poland bearing the brunt of attacks, accounting for 80% of over 26,000 protected users, as Italy and Romania also experienced significant targeting.  Threat actors launched nine distinct phishing campaigns during the month, primarily focusing on Poland with seven dedicated attacks.  Recent cyberattacks have transitioned from using AceCryptor to […]

The post New Widespread Phishing Campaign Attacking Users With Multiple Malware appeared first on Cyber Security News.

Microsoft has released a critical security update for its Edge browser to address multiple vulnerabilities, including a severe validation flaw that could allow attackers to execute arbitrary code on affected systems. The update, released on August 1, 2024, patches three significant vulnerabilities in Microsoft Edge versions prior to 127.0.2651.86: The most severe of these, CVE-2024-7256, […]

The post Microsoft Edge Vulnerability Let Attackers Execute Arbitrary Code appeared first on Cyber Security News.

A critical security vulnerability has been discovered in Bitdefender’s GravityZone Update Server, potentially exposing organizations to server-side request forgery (SSRF) attacks. The flaw, identified as CVE-2024-6980, carries a high severity rating with a CVSS score of 9.2 out of 10, indicating its significant impact on affected systems. The security issue originates from a verbose error-handling […]

The post Bitdefender Vulnerability Let Attackers Trigger SSRF Attacks appeared first on Cyber Security News.

Security Risk Advisors (SRA) announces the launch of VECTR Enterprise Edition, a premium version of its widely-used VECTR platform for purple teams and adversary management program reporting and benchmarking. VECTR Enterprise is designed to support organizations that want to mature and communicate the success of their purple team exercises with benchmarking and executive reporting features. […]

The post Security Risk Advisors Announces Launch of VECTR Enterprise Edition appeared first on Cyber Security News.

A new malware named “Flame Stealer” has been making waves in the cybersecurity community, posing a significant threat to users’ financial and personal data. Developed in C and C++, this sophisticated software was first announced on Telegram on April 14, 2024, and has since been evolving with claims of being undetectable by conventional antivirus tools. […]

The post New Flame Stealer Malware Attacking Users to Steal Credit Card Data appeared first on Cyber Security News.

MTP (Simple Mail Transfer Protocol) test tools are essential for verifying the configuration and security of email servers. These tools help ensure that email communications are secure, reliable, and properly configured, which is crucial for protecting sensitive information and preventing unauthorized access. The SMTP test tools checks your SMTP server’s health status. First, it connects […]

The post 10 Best SMTP Testing Tools for Email Security in 2024 appeared first on Cyber Security News.

Specula tool utilizes a Registry to turn Microsoft Outlook Into a C2 Server capable of executing arbitrary commands. Fundamentally, Specula is a C2 framework that uses the Outlook home page feature.  It exposes the ability to develop a home page capable of attacking this vector.  This ability to exploit the Outlook home page has been […]

The post Specula Tool Leveraging Registry to Turn Outlook Into a C2 Server appeared first on Cyber Security News.

Endpoint management tools streamline the administration and security of an organization’s endpoint devices, such as desktops, laptops, and mobile devices. They provide centralized control over device configuration, software deployment, and policy enforcement, enhancing IT efficiency. These tools ensure compliance with security policies and help mitigate risks by monitoring and managing endpoints‘ health and security status. […]

The post Top 20 Best Endpoint Management Tools – 2024 appeared first on Cyber Security News.

Since unarchiver apps are commonly used and trusted for extracting files, threat actors often abuse them to disseminate malware and other malicious files. Recently, security analysts uncovered macOS malware that disguises itself as an “Unarchiver” app, enabling threat actors to steal user data. During routine research, cybersecurity experts at Hunt.io discovered a phishing site masquerading […]

The post macOS Malware Disguise As Unarchiver App Steals User Data appeared first on Cyber Security News.

OneBlood, the not-for-profit blood center serving much of the southeastern United States, has been hit by a ransomware attack that has impacted its software systems. The organization works closely with cybersecurity specialists and federal, state, and local agencies to address the situation. “OneBlood takes the security of our network extremely seriously,” said Susan Forbes, OneBlood’s […]

The post OneBlood Hit by Ransomware Attack, Software Systems Affected appeared first on Cyber Security News.

Cyber A.I. Group, Inc., an emerging growth global cybersecurity, A.I. and IT services company, announced today that it has executed a Letter of Intent (LOI) to acquire a prominent North American-based cybersecurity firm. The announcement was made by Walter Hughes, CEO of Cyber A.I. Group alongside A.J. Cervantes, Jr., Executive Chairman of Cyber A.I. Group […]

The post Cyber A.I. Group Announces LOI to Acquire Prominent North American Cyber Security Company appeared first on Cyber Security News.

In recent days, threat actors have leveraged the popular Google Authenticator (a multi-factor authentication program) through Google ads, infecting devices with malware. In this instance, an unidentified person was able to pose as Google and effectively distribute malware that was tricked as a legitimate Google product. This not only deceives innocent individuals into downloading malware […]

The post Weaponized Google Authenticator Via Google Ads Steals Sensitive Data appeared first on Cyber Security News.

Since February 2022, a highly advanced Android malware campaign has been specifically designed to attack one-time passwords (OTPs), which are used for enterprise security breaches. While tracking more than 107,000 malware samples, zLabs researchers noticed how the attackers changed their tactics to bypass security measures and gain access to confidential corporate information. This protracted operation […]

The post New SMS Stealer Infects Millions Of Android Users In 113 Countries appeared first on Cyber Security News.

Google has introduced several measures to address this threat, including Safe Browsing download protection in Chrome, Device Bound Session Credentials, and account-based threat detection systems that alert users to the misuse of stolen cookies. Cybercriminals using cookie theft infostealer malware continue to pose a significant risk to user safety and security. Today, Google is announcing […]

The post Google Chrome Now Prevent Users From Cookie Steal Malware on Windows appeared first on Cyber Security News.

Microsoft has issued a significant security alert regarding a vulnerability in VMware ESXi hypervisors, which ransomware operators have actively exploited. According to the Shadowserver Foundation, the vulnerability, identified as CVE-2024-37085, exposed 20,275 instances as of July 30, 2024. The CVE-2024-37085 vulnerability is an authentication bypass flaw with a CVSS score of 6.8. It specifically affects […]

The post 20,275 VMware ESXi Vulnerable Instances Exposed, Microsoft Warns of Massive Exploitation appeared first on Cyber Security News.

A critical vulnerability in GeoServer, an open-source Java-based software server, has put thousands of servers at risk. The flaw, CVE-2024-36401, allows unauthenticated users to execute remote code, posing a significant threat to global geospatial data infrastructures. A recent tweet from The Shadowserver Foundation reported that the CVE-2024-36401 vulnerable GeoServer instances.               CVE-2024-36401-Vulnerability Details According to […]

The post Hackers Actively Exploiting GeoServer RCE Flaw, 6635 Servers Vulnerable appeared first on Cyber Security News.

Cryptocurrency scams are becoming increasingly sophisticated. This article delves into the intricacies of these scams, providing insights into how they operate and offering tips on how to protect your cryptocurrency assets. The scam begins innocuously with a forwarded Telegram message about a cryptocurrency sale. The message includes a five-second video clip featuring a screenshot of […]

The post Beware of Malicious Crypto Management App that Drains Your Wallet appeared first on Cyber Security News.

On July 30, 2024, Microsoft experienced a significant global outage affecting its Azure cloud services and Microsoft 365 products. The incident, which lasted nearly 10 hours, was triggered by a Distributed Denial-of-Service (DDoS) attack and impacted users worldwide. The outage began at approximately 11:45 UTC and was resolved by 19:43 UTC. During this period, users […]

The post DDoS Attack Leads to Microsoft Azure Global Outage appeared first on Cyber Security News.

A recent discovery has unveiled vulnerabilities in multiple hosted, outbound SMTP servers, allowing authenticated users and certain trusted networks to send emails with spoofed sender information. These vulnerabilities, CVE-2024-7208 and CVE-2024-7209, exploit weaknesses in the authentication and verification mechanisms provided by Sender Policy Framework (SPF) and Domain Key Identified Mail (DKIM). Domain-based Message Authentication, Reporting, […]

The post Multiple SMTP Servers Vulnerable to Spoofing Attacks, Hackers Bypassing Authentication appeared first on Cyber Security News.