Security Affairs

OCTOBER 18, 2023

Google TAG reported that both Russia and China-linked threat actors are weaponizing the a high-severity vulnerability in WinRAR. Google’s Threat Analysis Group (TAG) reported that in recent weeks multiple nation-state actors were spotted exploiting the vulnerability CVE-2023-38831 in WinRAR. ” reported Google TAG.

Cybercrime 123

Cybercrime Malware Software Hacking 123

Malwarebytes

MARCH 22, 2023

Recently, while reading a blog post from security vendor Akamai, we spotted a similar situation. In this blog post, we show how the newly found Kritec skimmer was found along side one of its competitors. While details were not shared at the time, we were able to determine thanks to an archived crawl on urlscan.io

64

64

Security Affairs

MARCH 29, 2023

Google’s Threat Analysis Group (TAG) discovered several exploit chains targeting Android, iOS, and Chrome to install commercial spyware. Google’s Threat Analysis Group (TAG) shared details about two distinct campaigns which used several zero-day exploits against Android, iOS and Chrome. links sent over SMS to users.

Spyware 90

Spyware Surveillance Firmware Internet 90

The Last Watchdog

JANUARY 13, 2022

While the price tag of these violations was shocking, the compliance failure was not. A more practical solution would be to use an enterprise-approved chat application that allows employees of regulated industries to chat via customer-preferred apps while archiving all chat data on company servers.

Mobile 227

Mobile Encryption Risk 227

Security Affairs

MAY 9, 2022

The attacks were also reported by Google’s TAG team, which confirmed they were for intelligence purposes. The group has also continuously evolved its delivery mechanisms consisting of maldocs, shortcut files, malicious archives and more recently seen downloaders starting with 2022.” To nominate, please visit:? Pierluigi Paganini.

Government 82

Government Malware Phishing Hacking 82

Krebs on Security

MARCH 2, 2020

Archived copies of talainine.com indicate the business was managed by two individuals, including someone named Yassine Algangaf. ” A review of Majidi’s Facebook profile shows that phrase as his tag line, and that he has signed several of his posts over the years as “Fatal.001.”

DNS 248

DNS Penetration Testing Malware Hacking 248

Kali Linux

MAY 31, 2021

Again) In case you missed it, we have previously covered Kaboxer in it’s own dedicated blog post , which goes into a lot more detail of why we love it so! For developers, this is a great new tool in the arsenal. Kaboxer is still in its infancy, so please be nice & patient with it. Releasing Kali-Tweaks v1.0 Announcing Kali-Tweaks !

Engineering 52

Engineering Firmware Architecture Backups 52