Month: September 2022

Fancy Bear aka APT28, is a Russian state-sponsored threat actor. The group is back in action and utilizing a new code execution method that exploits mouse movement in MS PowerPoint files to distribute Graphite malware. For your information, APT28/Fancy Bear is linked with a Russian military intelligence unit called GRU. This is the same group… Continue reading Fancy Bear Hackers Distributing Graphite Malware Using PowerPoint Files.

A hacker who alleged to have targeted Australia’s second-largest telecom firm Optus and obtained data of millions of Australians has dropped more records online. Previously, the hacker asked for a ransom payment of approx.—$ 1 million in exchange for customer records. However, on Tuesday, the attacker retracted this demand. Optus Hacker Published Apology After Releasing… Continue reading Optus Hacker Apologizes To Australians Over Data Breach.

The Satori Threat Intelligence and Research Team at Human identified a new wave of cyberattacks involving the use of malicious applications against iOS and Android users. The alarming fact is that these infected apps boast millions of downloads. The good news is that the attack has been halted by Apple and Google after their prompt… Continue reading Scylla Ad Fraud Attack On iOS And Android Users Halted By Apple And Google.

Australia’s second-largest telecommunication firm, Optus, is the latest cyberattack victim, which Sydney-based tech analyst Trevor Long has regarded as the biggest breach of personal data from an Australian firm. Optus Hack Details. On Thursday, Optus confirmed that its customers’ private data could be compromised in this attack since the attackers managed to access the customer… Continue reading Data Of Millions Of Users Exposed In Australia’s 2nd-Largest Telecom Firm Breach.

An Elasticsearch server belonging to a healthcare software provider in India is currently exposing the Covid antigen test results of Indians and foreign nationals who traveled to or from India in the last couple of years. It is worth noting that these tests were taken through a rapid antigen kit known as Covi-Catch. Covi-Catch is… Continue reading Covid Antigen Test Results Of 1.7m Indian And Foreign Nationals Leaked online.

According to Microsoft 365 Defender Research Team, in an incident they analyzed, malicious OAuth applications were deployed on compromised cloud tenants, and eventually, attackers took over Exchange servers to carry out spam campaigns. According to a new disclosure notice from the Microsoft 365 Defender Research Team, cybercriminals are increasingly targeting Microsoft Exchange servers. Their modus… Continue reading New Spam Attack Abusing OAuth Apps To Target Microsoft Exchange Servers.

Whenever a coin, stock, or market goes down you’ll have a lot of people blurting “I knew it was a bubble” or “I told you so.” This is human nature, this is something skeptical people do and have been doing forever. In contrast, fresh new investors then jump in blindly, while not doing research or… Continue reading Is This The Crypto Winter Or A Huge Discount?

The London, England-based cryptocurrency market maker Wintermute announced becoming the target of a cyberattack and hackers stole $160 million from its DeFi (decentralized finance) operation. On Tuesday, the company confirmed that the hack was restricted to its DeFi operations, and OTC (over the counter), lending, and Cefi services remained unaffected. However, its service may be… Continue reading Crypto Market Maker Wintermute Hacked, $160 Million Stolen.

Wiz security researcher Elad Gabay reported that they discovered a critical vulnerability in the Oracle Cloud Infrastructure (OCI), which a customer may have exploited to read/write another customer’s data on the same platform without permission. This means the vulnerability could allow any Oracle customer unauthorized access to the Cloud storage data of another customer. The… Continue reading Oracle Patches “Severe” Vulnerability In Its Cloud Infrastructure.