According to a new report published by Taiwanese cybersecurity firm CyCraft, the second wave of attacks between February 10 and 13 - 2022, with the wide-ranging supply chain compromise specifically targeting the software systems of financial institutions, resulting in "abnormal cases of placing orders." The "Operation Cache Panda" infiltration exploited a vulnerability in the web management … Continue reading Chinese Hackers Have Launched A Supply Chain Attack On Taiwan’s Financial Trading Sector.
Trend Micro researchers reported that ,"Malicious actors can use this type of service to register disposable accounts in bulk or create phone-verified accounts for conducting fraud and other criminal activities". In the last two years, there has been an increase in short message service (SMS) phone-verified account (PVA) services. SMS PVA services provide customers with … Continue reading Hackers Are Capturing Disposable Accounts On Infected Android Devices.
According to Christian Seifert, principal research manager at Microsoft's Security and Compliance department, "one aspect that the immutable and public blockchain provides is complete transparency, so an attack can be observed and researched after it occurs. It also allows for the financial impact of attacks to be analyzed, which is difficult in classic web2 phishing … Continue reading On Web3 And Decentralized Networks, Microsoft Warns Of ‘Ice Phishing’ Threat.
A vulnerability in Cisco AsyncOS Software for Cisco Email Security Appliance (ESADNS-based )'s Authentication of Named Entities (DANE) email verification component might allow an unauthenticated, remote attacker to cause a (DoS) issue on an affected device. An attacker could take advantage of this flaw by sending specially crafted email messages to a device that is … Continue reading Attackers Can Bring Down Cisco Email Security Appliances By Sending Malicious Emails.
Earlier this month , The hacker team using a previously unknown (RAT) called "StrifeWater" that masquerades as the Windows Calculator software to avoid detection. Moses Staff is thought to be supported by the Iranian government, with assaults recorded targeting entities in Israel, Italy, India, Germany, Chile, Turkey, the UAE and the US. As part of … Continue reading Israeli Organisations Are Being Targeted For Cyber Espionage By Moses Staff Hackers.