Vietnam-linked Ocean Lotus was found involved in a cyberespionage campaign on the country’s human rights defenders and a nonprofit organization that continued for roughly three years.
Contact details, birth dates, addresses, and partial bank account numbers are among the details believed stolen. But the affected accounts had been locked, Npower told the BBC.
Cybersecurity researchers today unwrapped a new campaign aimed at spying on vulnerable Tibetan communities globally by deploying a malicious Firefox extension on target systems.
Cisco Talos recently discovered an out-of-bounds read vulnerability in Slic3r’s library. An adversary could send a target a specially crafted obj file to cause an out-of-bounds condition.
US Senators slammed Amazon Web Services for refusing to testify at a hearing about the SolarWinds intrusion given the public cloud giant’s infrastructure was used in the attack.
After a security researcher published the PoC exploit code targeting a critical vCenter RCE vulnerability, attackers are now actively scanning for vulnerable Internet-exposed VMware servers.
Worryingly, more than nine in 10 (93%) of those organizations that experienced attacks in this period admitted that at least one was successful, according to a new study by Bridewell Consulting.
A variant of Masslogger Trojan is being used by criminals to steal Microsoft Outlook, Google Chrome, and Messenger account credentials.
An automated TDoS attack makes use of VoIP software and Session Initiation Protocol (SIP) to make tens or hundreds of calls, simultaneously or in rapid succession to jam targeted services.
Researchers discovered two pieces of malware in a span of two weeks that appear to run natively on Apple’s recently introduced M1 System-on-Chip (SoC).