243 ASUS has recently addressed a vulnerability in routers that were equipped with AiCloud, which could potentially allow unauthorized commands to be executed on the device. It is essential for users to update their routers with the latest firmware release …
ASUS Fixed Critical Auth Bypass Vulnerability In AiCloud Routers Read More »
î ‚May 03, 2025î „Ravie LakshmananSupply Chain Attack / Malware Cybersecurity researchers have unearthed three malicious Go modules containing encrypted code to access subsequent destructive payloads that can permanently corrupt a Linux system’s main drive and make it unbootable. The names of …
Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack Read More »
184 A new attack strategy called “Cookie-Bite” has been devised by researchers, showcasing cookie theft through malicious browser extensions. While the concept of stealing session cookies is not new, using a malicious browser extension as a proof of concept emphasizes …
Cookie-Bite Attack Demoes Extension Exploit To Steal Cookies Read More »
î ‚May 02, 2025î „Ravie LakshmananPassword Security / Windows A year after Microsoft announced passkeys support for consumer accounts, the tech giant has announced a big change that pushes individuals signing up for new accounts to use the phishing-resistant authentication method by …
57 The popular imageboard website, 4chan, has finally come back online after a prolonged outage caused by a cyberattack. Despite resuming its services, the platform has acknowledged the significant impact of the incident. 4chan Returns After Cyberattack In a recent …
4chan Is Back Online After Cyberattack, But With Issues Read More »
Apr 30, 2025Ravie Lakshmanan Secure Coding / Vulnerability Meta on Tuesday announced LlamaFirewall, an open-source framework designed to secure artificial intelligence (AI) systems against emerging cyber risks such as prompt injection, jailbreaks, and insecure code, among others. The framework, the …
56 Android users need to be cautious of a new threat, especially when it comes to payment cards. A new malware called “SuperCard X” has been identified targeting Android devices through NFC relay frauds. SuperCard X Malware Targets Android Devices …
SuperCard X Malware Attacks Android With NFC Relay Attacks Read More »
î ‚Apr 28, 2025î „Ravie LakshmananWebsite Security / Malware Cybersecurity researchers are raising alarm about a widespread phishing campaign aimed at WooCommerce users. The campaign tricks users into downloading a fake security patch that actually installs a backdoor. Security firm Patchstack has …
WooCommerce Users Targeted by Fake Patch Phishing Campaign Deploying Site Backdoors Read More »
î ‚Apr 27, 2025î „Ravie LakshmananKubernetes / Cloud Security Microsoft has disclosed that an entity known as Storm-1977 has been executing password spraying attacks on cloud tenants in the education sector over the past year. “The attack involves the utilization of AzureChecker.exe, …
North Korea-linked threat actors associated with the Contagious Interview campaign have established front companies to distribute malware under the guise of fake job interviews. The three front companies being used in this scheme are BlockNovas LLC, Angeloper Agency, and SoftGlide …
North Korean Hackers Spread Malware via Fake Crypto Firms and Job Interview Lures Read More »
