Summary: This content discusses a malicious campaign targeting cryptocurrency users that involves a fake virtual meeting software called Vortax. Threat Actor: Vortax | Vortax Victim: Cryptocurrency users | cryptocurrency users Key Point: Vortax is a fake virtual meeting software that is marketed as…
Tag: MACOS
Discover how Vortax, a fake meeting software, spreads infostealers targeting cryptocurrency users, compromising macOS security. Learn more.
Summary: This content discusses Ghidra, an open-source software reverse engineering framework developed by the National Security Agency (NSA), highlighting its features and capabilities. Threat Actor: National Security Agency (NSA) | National Security Agency Victim: N/A Key Point : Ghidra is an open…
Summary: Mozilla Firefox now allows users to enhance the security of their stored credentials by requiring device authentication before accessing them. Threat Actor: N/A Victim: N/A Key Point: Mozilla Firefox has introduced a new feature that requires users to authenticate with their device’s login,…
Group-IB highlights growing Apple-device targeting, noting the App Store as a frequent malware distributor and the potential risk from third-party stores under the EU DMA. The report introduces GoldPickaxe, an iOS Trojan derived from GoldDigger that harvests f…
cors-parser is an npm package that masks a cross-platform backdoor inside seemingly ordinary PNG files. Researchers show how the first-stage code downloads initial.png, decodes further payloads, and installs platform-specific backdoors that auto-start on reboo…
Summary: A Pakistani threat actor known as Cosmic Leopard has been conducting cyber espionage and surveillance on Indian government-associated entities for the past six years. Threat Actor: Cosmic Leopard | Cosmic Leopard Victim: Indian government-associated entities | Indian government-associated e…
Summary: A new phishing kit has been released that allows cybercriminals to create progressive web apps (PWAs) to steal credentials by displaying convincing corporate login forms. Threat Actor: Cybercriminals | Phishing Kit Victim: Individuals and organizations targeted by phishing attacks Key Point…
Operation Celestial Force is a long-running espionage campaign operated by a Pakistani threat actor cluster dubbed Cosmic Leopard, leveraging GravityRAT on Android and Windows-based HeavyLift loaders, managed through GravityAdmin panels. The operation targets …
Yesterday, we reported, “iPhone iOS 9/10/11 source code has been leaked on GitHub” Although this incident can be traced back to a few months ago, Reddit broke the news, but apparently unable to sit still. According...
The post iPhone iOS source code leaked on Github was removed by Apple appeared first on Cybersecurity News….
Summary: Sniffnet is a free, open-source network monitoring tool that focuses on user experience and is designed to be easily usable by beginners. Threat Actor: N/A Victim: N/A Key Point : Sniffnet is a GUI application developed in Rust, making it unique in the network analyzer space. It offers feat…
Summary: This content discusses the RansomHub ransomware-as-a-service, which is believed to have evolved from the now-defunct Knight ransomware project. RansomHub operates as a data theft and extortion group that sells stolen files to the highest bidder. Threat Actor: RansomHub | RansomHub Victim: U…
Mandiant assesses with high confidence that Russia poses the most significant threat to the Paris Olympics, including cyber espionage, disruptive and destructive operations, and information operations. Organizations should update threat profiles, conduct secur…
Summary: Researchers have discovered a macOS version of the LightSpy spyware that has been active since January 2024, with threat actors using publicly available exploits to deliver the spyware and exfiltrate private information from devices. Threat Actor: LightSpy | LightSpy Victim: macOS users | m…
Summary: Cybersecurity researchers have discovered a surge in malware and phishing attacks on the popular communication platform Discord, with over 50,000 malicious links identified in the last six months. Threat Actor: Cybercriminals Victim: Users of Discord Key Point : Malware and phishing links m…