SecurityWeek
Threat Actors Abuse GitHub to Distribute Multiple Information Stealers
Russian-speaking threat actors are caught abusing a GitHub profile to distribute information stealers posing as legitimate software.
The Cyber Express
SideCopy APT Campaign Found Targeting Indian Universities
Cyble Research and Intelligence Labs (CRIL) researchers have uncovered a new SideCopy campaign. The threat actor group has previously been
The Cyber Express
CBSE Results 2024 Under Threat: Database Vulnerability Could Compromise Student Scores
As the Central Board of Secondary Education (CBSE) in India released the CBSE results 2024 for its class 10th and
The Cyber Express
Researchers Observe Potential Ties between Trinity and Venus Ransomware Strains
Cybersecurity researchers at Cyble's Research and Intelligence Labs (CRIL) have uncovered a new ransomware variant called Trinity, which employs a
The Cyber Express
The CyberPower UPS Vulnerability Threatening Critical Systems Across Sectors
A new UPS management vulnerability in CyberPower Uninterrupted Power Supply (UPS) management software has been uncovered, revealing multiple flaws that have
The Cyber Express
Global Infosec Awards 2024: Cyble Wins Nine Accolades, Recognized Among the Best in Cybersecurity
Cyber Defense Magazine (CDM), marking its 12th anniversary as the leading electronic information security magazine, announced the winners of the
The Cyber Express
Top 5 Cybersecurity Companies Making Waves at RSAC 2024
The RSA Conference 2024, the world's biggest cybersecurity event, is currently underway at the Moscone Center in San Francisco. Over
The Cyber Express
RSA Conference 2024: What to Expect from the World’s Largest Cybersecurity Event
The RSA conference 2024 , the world's largest cybersecurity gathering, commenced in San Francisco from May 6 to 9, 2024.
The Cyber Express
Cyble Showcases Next-Gen Cybersecurity Technologies at RSA Conference 2024
San Francisco, May 6, 2024 — Cyble, the leading provider of AI-driven cybersecurity solutions, is excited to announce its participation
Cyber Security News
ShadowSyndicate Hackers Exploit Aiohttp Vulnerability To Steal Sensitive Data
A directory traversal vulnerability (CVE-2024-23334) was identified in aiohttp versions before 3.9.2, allowing remote attackers to
The Cyber Express
USDoD Resurfaces with Alleged China Data Leak After Building New CDN Site
The threat actor USDoD claimed that they had published the Personally Identifiable Information (PII) of about 2 million members of
The Cyber Express
Researches Discovers New Android Banking Trojan ‘Brokewell’ Disguised as Chrome Update
CRIL Researchers observed a new android banking trojan 'Brokewell,' being distributed through a phishing site disguised as the official Chrome
Infosecurity News
DragonForce Ransomware Group Uses LockBit’s Leaked Builder
Cyber threat intelligence provider Cyble found that DragonForce was using a ransomware binary based on LockBit Black’s builder
The Cyber Express
Researchers Discover Connection Between LockBit and DragonForce Ransomware Builders
Cyble Research & Intelligence Labs (CRIL) recently discovered evidence suggesting that the threat actors behind the DragonForce ransomware group might
.webp)
Cyber Security News
TransparentTribe Hackers Weaponize Websites & Documents to Attack Indian Orgs
The hacker group known as TransparentTribe, also referred to as APT-36, has intensified its cyber espionage activities.
The Cyber Express
Cyble Revolutionizes Cybersecurity with the Launch of AmIBreached 3.0: A Cutting-Edge Dark Web Search Engine
Atlanta, Georgia, April 20, 2024 —Cyble, a leading force in AI-based cybersecurity, proudly unveils the relaunch of AmIBreached, marking a
The Cyber Express
TransparentTribe: The Elusive Threat Targeting India’s Defense Sector
TransparentTribe is an Advanced Persistent Threat (APT) group with a large appetite for targeting Indian government organizations, military personnel, and
SecurityWeek
Threat-Intelligence Startup VulnCheck Closes $8M Seed Financing
VulnCheck banks $8 million in early stage capital to build 'exploit intelligence' technologies and services.
The Cyber Express
FatalRAT Targets Cryptocurrency Users With DLL Side-loading Techniques
Researchers have discovered a sophisticated phishing campaign meticulously crafted to target cryptocurrency users. This elaborate scheme, equipped with the notorious
The Cyber Express
Beware of Active Exploitation: Critical Vulnerabilities in D-Link NAS Devices Exposes 92,000 Devices
An active exploitation of critical vulnerabilities in D-Link Network Attached Storage (NAS) devices has raised concerns for D-Link users exposing
The Cyber Express
Escalation of Fake E-Shop Campaign Threatens Banking Security in Multiple Regions
A recent analysis by Cyble has revealed a concerning escalation in the fake e-shop campaign, signaling a looming threat to
Cyber Security News
New Fake E-Shopping Attack Hijacking Users Banking Credentials
A fake e-shop scam campaign has been targeting Southeast Asia since 2021, as CRIL observed a surge in activity in September 2022, with the
The Cyber Express
The Comeback of WarzoneRAT: Analyzing the Latest Multi-Stage Attacks
WarzoneRAT, the notorious Remote Administration Tool (RAT) malware, made a comeback despite the FBI's efforts to dismantle its operations earlier
SecurityWeek
Threat Indicators Show 2024 Is Already Promising to be Worse Than 2023
In just the first two months of 2024, threat intelligence firm Flashpoint has logged dramatic increases in all major cyber threat indicators.
SecurityWeek
Aiohttp Vulnerability in Attacker Crosshairs
A recently patched Aiohttp vulnerability tracked as CVE-2024-23334 is being targeted by threat actors, including by a ransomware group.
Bleeping Computer
Hackers exploit Aiohttp bug to find vulnerable networks
The ransomware actor 'ShadowSyndicate' was observed scanning for servers vulnerable to CVE-2024-23334, a directory traversal vulnerability in the aiohttp Python library.
The Cyber Express
Uncovering ShadowSyndicate Group’s Exploitation of Aiohttp Vulnerability
In the final week of January 2024, CGSI (Cyble Global Sensor Intelligence) uncovered a potential exploitation of an Aiohttp vulnerability
The Cyber Express
Xehook Stealer: Evolution from Cinoshi Project to an Advanced Crypto-Stealing Malware
A new information stealer has entered the dark web markets. Dubbed "Xehook Stealer," this .NET-based malware, meticulously crafted to target
The Cyber Express
Cyble Rockets to Top 100 AI Startups List Funded by Y Combinator!
Atlanta-based Cyble Inc. has once again made waves in the cybersecurity industry. The trailblazing AI-powered threat intelligence platform secured a
The Cyber Express
Sophisticated Fraud Rings Spread Pig Butchering Scams Across Asia
In recent years, the financial industry in India has been marred by the spread of pig butchering scams, a sophisticated
.webp)
Cyber Security News
Beware of Fake Trading Apps on Google Play & App Store that Steal Your Money
Investigation unveiled a trend of fake trading apps on Google Play and the App Store, unsuspecting users out of their hard-earned money.
The Cyber Express
Cyble Recognized Among Forbes’ America’s Best Startup Employers 2024
Cyble, a leading force in AI-based cybersecurity, proudly announces its inclusion in Forbes' prestigious list of America's Best Startup Employers
The Cyber Express
ConnectWise Phishing Scam Targets Healthcare and Crypto Sectors in US
A new ConnectWise phishing campaign has been discovered directed at both the healthcare and cryptocurrency communities in the United States.
The Cyber Express
ConnectWise Phishing Scam Targets Healthcare and Crypto Sectors in US
A new ConnectWise phishing campaign has been discovered directed at both the healthcare and cryptocurrency communities in the United States.
The Cyber Express
Dark Web Actor Selling Source Code for Rust-Based Information Stealer
A newcomer to the underground forum "Crackingx" under the username "10cker" caused a stir by offering the source code of
The Cyber Express
Anti-Israel Hacktivist Groups Unites to Launch Coordinated Cyberattacks on Israel
Amidst the tumult of the Hamas-Israel conflict, cyber warfare has taken many turns as many hacktivist groups aligned with opposing
The Cyber Express
From ObserverStealer to AsukaStealer: A Deeper Dive into Malware Evolution
Researchers at Cyble recently found the Malware-as-a-Service Infostealer ObserverStealer operating under a new identity. The ObserverStealer was rebranded and revamped
The Cyber Express
Newly Emerged JKwerlo Ransomware Targets Victims in France and Spain
A newly discovered ransomware dubbed JKwerlo has emerged in European markets, aiming at unsuspecting victims in France and Spain. Cyble
The Cyber Express
Is Your Crypto Safe? XPhase Clipper Malware Steals Coins with a Click
A new strain of malware dubbed XPhase Clipper has been stealthily targeting cryptocurrency users. This Clipper malware infiltrates unsuspecting victims'
The Cyber Express
ODIN Rolls Out JSON File Download Feature, Making Analysis of IPs and CVEs Even Easier
Cyble, a trailblazer in the cybersecurity domain, has taken a significant leap forward with its ODIN platform. Aiming to streamline
The Cyber Express
GhostSec Raises Funds For Hacktivist and Threat Actors Through Project ‘Low Cost Database’
GhostSec, the hacktivist group known for its support of cyber threat actors and activists, continues to expand its activities in
The Cyber Express
From Intrusion to Insight: Dissecting the Cyberattack on AnyDesk and its Implications
The compromise of AnyDesk, a prominent remote desktop application distributed by AnyDesk Software GmbH, has caused quite a stir in
The Cyber Express
The Intricacies of Atomic Stealer (AMOS) and the Emergence of Xehook Stealer on Dark Web
A new information stealer has arrived on the dark web. Known as the Atomic Stealer (AMOS), this information stealer, this
The Cyber Express
A Covert Cyberattack: MetaStealer Malware Targets US Asylum Seekers
Cyble Research and Intelligence Labs (CRIL) has identified an ongoing campaign targeting individuals seeking asylum in the United States through
The Cyber Express
Cyber Espionage Strikes Indian Air Force: Malware Disguised in ‘SU-30 Aircraft Procurement’ File
A sophisticated cyber espionage attack targeting the Indian Air Force has come to light. The cyberattack on the Indian Air
The Cyber Express
Innefu Labs Data Breach: Indian Cybersecurity Firm Falls Victim to Cyberattack
Innefu Labs, an Indian cybersecurity firm known for its advanced AI and data analytics solutions, has reportedly fallen victim to
The Record
Indian Air Force potentially targeted with info-stealing malware
The unidentified threat actor sent phishing emails with a link to a malicious .zip file supposedly containing data about fighter jets — an indication they were targeting professionals within the Indian Air Force.
The Cyber Express
Unmasking the Resurgence of Azorult Malware: Cyble Detects A New Dark Web Campaign
The notorious Azorult malware has resurfaced on the dark web again, demonstrating a renewed and sophisticated approach. First identified in
The Cyber Express
Beyond the Firewall: Why Soft Skills Are Cybersecurity’s New Superpower
In a domain traditionally lauded for its technical prowess, the emergence of soft skills as a critical factor might seem
The Cyber Express
Unmasking New Year-themed Spam Emails: A Closer Look at the Remcos RAT Connection
As the New Year festivities unfold, cyber threats take on a deceptive facade, with malicious actors exploiting the celebratory spirit
The Cyber Express
Cyble’s Latest Product – ODIN – Rolls Out Service Banner Search Feature
In yet another development in Cyble's latest solution – ODIN rolled out ODIN Banners - a groundbreaking feature designed to
The Cyber Express
Unraveling the Intricacies of qBit Stealer: A New Information Stealer on the Market
A new information stealer has arrived on the dark web markets. Known as the qBit stealer, this information stealer came
The Hacker News
Operation RusticWeb: Rust-Based Malware Targets Indian Government Entities
Indian government and defense entities under attack! A phishing campaign dubbed "Operation RusticWeb" deploys Rust-based malware for intel gathering
The Hacker News
Decoy Microsoft Word Documents Used to Deliver Nim-Based Malware
A new phishing campaign is using Microsoft Word docs as bait to deliver Nim-based malware.
The Hacker News
New Chameleon Android Banking Trojan Variant Bypasses Biometric Authentication
An evolved version of the Chameleon banking malware can bypass biometric authentication and displays HTML prompts.
The Cyber Express
Top 25 Cybersecurity CEOs to Watch in 2024
In an era marked by relentless technological evolution and the omnipresence of cyber threats, the role of cybersecurity professionals has
The Cyber Express
Emerging Trends and Challenges in Cybersecurity: Insights from Abul Kalam Azad
In a comprehensive exploration of the dynamic cybersecurity terrain, Abul Kalam Azad, Head of Information Security at Eastern Bank, shares
The Cyber Express
Harry Coker Confirmed as White House Cyber Director, Poised to Lead Federal Cybersecurity Efforts
The United States Senate officially announced Harry Coker, Jr. as the National Cyber Director in the White House Office of
Cyber Security News
New Editbot Stealer in Action; Stealing Browser Passwords & Cookies
There has been a new malicious campaign - Editbot Stealer, discovered in which threat actors use WinRAR archive.
The Cyber Express
Revealing the Editbot Stealer: A Python-Based Threat Targeting Social Media Users
A new menace has emerged on the dark web— the Editbot stealer. Recently discovered by Cyble Research and Intelligence Labs
The Cyber Express
Cyble Reveals ‘High-Severity’ Vulnerability in ControlByWeb, Prompting CISA Alert
Prajitesh Singh, a senior researcher at Cyble Research & Intelligence Labs, detected a crucial Cross-Site Scripting Vulnerability (CVE-2023-6333) in ControlByWeb's
The Cyber Express
Master the Defenses: 8 Cybersecurity Best Practices for 2024
The ever-accelerating pace of technological advancement shapes our world, forging a double-edged digital landscape. On one hand, it fuels innovation
The Hacker News
SpyLoan Scandal: 18 Malicious Loan Apps Defraud Millions of Android Users
Cybersecurity researchers have uncovered 18 malicious loan apps on the Google Play Store.
The Cyber Express
Navigating Cybersecurity in 2023: The Year’s Best Cyber Threat Intelligence Tools
As the year draws to a close, it's crucial for businesses to reflect on their cybersecurity posture and consider the
The Cyber Express
Alphv/BlackCat SEC Complaint: A Desperate Move, Pressure Tactic, or Exploiting Regulations?
Filing a complaint with The U.S. Securities and Exchange Commission (SEC) in the event of a company's non-disclosure of a
The Cyber Express
Y Combinator Spotlights AI-powered Threat Intelligence Platform Cyble Among Top Startups
Atlanta-based Cyble Inc., a trailblazing AI-powered threat intelligence platform, has reached a remarkable milestone by earning recognition among the distinguished
The Cyber Express
World CyberCon India 2023, Second Edition: A Triumph in Advocating a Secure Digital Terrain
The city of Mumbai played host to the second edition of World CyberCon India 2023 on December 1, 2023, at
The Cyber Express
TrickMo Banking Trojan Resurfaces with New Features, Targeting Android Devices this Time Around
A particularly nefarious Banking Trojan, TrickBot, has reemerged, this time with an Android variant named "TrickMo" - a reference to
The Cyber Express
Emerging Trends and Challenges in Cybersecurity: Insights from Abul Kalam Azad
In a comprehensive exploration of the dynamic cybersecurity terrain, Abul Kalam Azad, Head of Information Security at Eastern Bank, shares
The Cyber Express
InsureMO Partners with Cyble to Revolutionize Cyber Insurance with Real-Time Threat Intelligence
Atlanta, Georgia – InsureMO has partnered with the Cyble Partner Network's Technology Alliance Partnership (TAP), heralding a new era in
CyberNews
North American auto supplier Yanfeng claimed by Qilin ransom group
The ransomware attack on Yanfeng – a North American auto parts supplier for GM and Stellantis' Jeep, Dodge, and Ram in North America is claimed by the Qilin ransom gang.
Bleeping Computer
Atomic Stealer malware strikes macOS via fake browser updates
The 'ClearFake' fake browser update campaign has expanded to macOS, targeting Apple computers with Atomic Stealer (AMOS) malware.
The Hacker News
Malicious Apps Disguised as Banks and Government Agencies Targeting Indian Android Users
📱 Alert: Android users in India, beware! Hackers are distributing fake banking and government apps to steal sensitive data like bank info and persona
The Hacker News
Mustang Panda Hackers Targets Philippines Government Amid South China Sea Tensions
China-linked Mustang Panda cyber actor targets Philippines government entity amid South China Sea tensions.
The Hacker News
Ransomware attacks doubled year on year. Are organizations equipped to handle the evolution of Ransomware in 2023?
Ransomware attacks have evolved in Q3-2023, employing new techniques to bypass defenses. Discover the strategies ransomware groups have been adopting.
Cyber Security News
Threat Actors Employ Remote Admin Tools to Gain Access over Corporate Networks
Cybersecurity researchers at CRIL (Cyble Research and Intelligence Labs) noted a campaign targeting Russian users, where threat actors created phishing sites mimicking restricted apps
Cyber Security News
Exela Stealer Attacking Discord Users to Steal Login Credentials
Cybersecurity researchers at Cyble Research and Intelligence (CRIL) discovered the 'Exela-V2.0-main.rar' zip file on September 14th, revealing a new 'Exela' stealer.
The Hacker News
Hook: New Android Banking Trojan That Expands on ERMAC's Legacy
Discover the evolution of Android trojans - 'Hook' inherits its powers from 'ERMAC.' How does it outperform its predecessor? Read on.
DataBreaches
“I’m Not Pro-Russia and I’m Not a Terrorist!” —- InfraGard and Airbus Hacker “USDoD” Unveils His New Campaigns
The first time DataBreaches remembers hearing about the man who calls himself “USDoD” was when he posted a sales listing for member data from...
The Hacker News
New HijackLoader Modular Malware Loader Making Waves in the Cybercrime World
HijackLoader, a new stealthy malware loader, is making waves in the cybercriminal world. Learn how it delivers dangerous payloads and evades security
-1.webp)
Cyber Security News
Hackers Use Weaponized LNK Files to Exploit Microsoft Connection Manager Profile
Threat actors have shifted from using malicious macros to malicious LNK files for initial access. This is due to Microsoft's announcement in 2022 to disable macros by default for Office documents downloaded from unknown sources or the internet.
SecurityWeek
Digital Identity Protection Firm SpyCloud Raises $110 Million
Account takeover and fraud protection firm SpyCloud has raised $110 million in a growth funding round led by Riverwood Capital.
SecurityWeek
Cerby Raises $17 Million for Access Management Platform for Nonstandard Applications
Cerby has raised $17 million in Series A funding for its access management platform for applications not supported by identity providers.
The Hacker News
Gigabud RAT Android Banking Malware Targets Institutions Across Countries
Gigabud RAT, a powerful banking malware, is targeting multiple countries, including Thailand, Indonesia, and the Philippines.
SecurityWeek
Jericho Security Raises $3 Million for Awareness Training Powered by Generative AI
Jericho Security raises $3 million in a pre-seed funding round to help organizations defend against generative AI-powered phishing attacks.
SecurityWeek
Cyble Raises $24 Million for AI-Powered Threat Intelligence Platform
Threat intelligence firm Cyble has raised $24 million in a Series B funding round co-led by Blackbird Ventures and King River Capital.
Cyber Security News
ARCrypt Ransomware Adapts TOR Communication Channels to Avoid detection
Unlike the old variant, the new variant communicates with victims through mirror sites, and threat actors create unique chat sites for each victim.
SecurityWeek
Security Firm Finds Over 130k Internet-Exposed Photovoltaic Diagnostics Systems
Cyble has discovered more than 130,000 Photovoltaic monitoring and diagnostic solutions exposed to the internet.
Bleeping Computer
Over 130,000 solar energy monitoring systems exposed online
Security researchers are warning that tens of thousands of photovoltaic (PV) monitoring and diagnostic systems are reachable over the public web, making them potential targets for hackers.
Cyber Security News
Over 130,000 Solar Panel Installations Exposed Online
Reports indicate that there are over 130,000 PV monitoring and diagnostic systems exposed over the internet, which is a wide attacking surface for threat actors.
DarkReading
Newbie Akira Ransomware Builds Momentum With Linux Shift
A new version of the double-extortion group's malware reflects a growing trend among ransomware actors to expand cybercrime opportunities beyond Windows.
Cyber Security News
New Ransomware Variant Recruit users for Russian Wagner Group
Russian Wagner Group. Recently, the cybersecurity researchers identified a new ransomware which is a variant of ransomware dubbed "Wagner."
The Hacker News
Newly Uncovered ThirdEye Windows-Based Malware Steals Sensitive Data
🔒 Discover the newly unearthed Windows-based information stealer, ThirdEye! This malware operates stealthily, harvesting sensitive data from infected
Bleeping Computer
Linux version of Akira ransomware targets VMware ESXi servers
The Akira ransomware operation uses a Linux encryptor to encrypt VMware ESXi virtual machines in double-extortion attacks against companies worldwide.
The Hacker News
8Base Ransomware Spikes in Activity, Threatens U.S. and Brazilian Businesses
A new ransomware threat called 8Base has emerged from the shadows with a "massive spike in activity."
DarkReading
Trojanized Super Mario Installer Goes After Gamer Data
A legitimate installer for the popular Nintendo game infects Windows machines with various malware, including a cryptominer and an infostealer, again showcasing the importance of remote worker security hygiene.
Security Affairs
Trojanized Super Mario Bros game spreads malware
Researchers observed threat actors spreading a trojanized Super Mario Bros game installer to deliver multiple malware. Researchers from Cyble Research and Intelligence Labs (CRIL) discovered a trojanized Super Mario Bros game installer for Windows that was used to deliver multiple malware, including an XMR miner, SupremeBot mining client, and the Open-source Umbral stealer. The threat actors […]
Bleeping Computer
Trojanized Super Mario game used to install Windows malware
A trojanized installer for a popular Super Mario Bros game has been infecting unsuspecting players with multiple Windows malware families.
The Hacker News
Warning: GravityRAT Android Trojan Steals WhatsApp Backups and Deletes Files
Attention Android users: Beware of the latest version of GravityRAT! It disguises itself as messaging apps, stealing WhatsApp backups, deleting files
The Hacker News
New Supply Chain Attack Exploits Abandoned S3 Buckets to Distribute Malicious Binaries
Researchers uncover a concerning software supply chain attack using expired Amazon S3 buckets to distribute malware-infected binaries.
Loading more articles....