Security Affairs

NOVEMBER 6, 2023

Google warns of multiple threat actors that are leveraging its Calendar service as a command-and-control (C2) infrastructure. Google warns of multiple threat actors sharing a public proof-of-concept (PoC) exploit, named Google Calendar RAT, that relies on Calendar service to host command-and-control (C2) infrastructure.

Accountability 135

Accountability Hacking Information Security Malware 135

Security Affairs

APRIL 17, 2023

Google Threat Analysis Group (TAG) team reported that the China-linked APT41 group used the open-source red teaming tool Google Command and Control ( GC2 ) in an attack against an unnamed Taiwanese media organization. ” reads the Threat Horizons April 2023 Threat Horizons Report published by Google.”The

Media 97

Media Accountability Government Malware 97

Security Affairs

NOVEMBER 28, 2021

North Korea-linked threat actors posed as Samsung recruiters in a spear-phishing campaign aimed at employees at South Korean security firms. North Korea-linked APT group posed as Samsung recruiters is a spear-phishing campaign that targeted South Korean security companies that sell anti-malware solutions, Google TAG researchers reported.

Malware 129

Malware Phishing Antivirus Hacking 129

Security Affairs

JUNE 26, 2022

Oracle spent 6 months to fix ‘Mega’ flaws in the Fusion Middleware Multiple malicious packages in PyPI repository found stealing AWS secrets Attackers exploited a zero-day in Mitel VOIP devices to compromise a network Threat actors continue to exploit Log4Shell in VMware Horizon Systems Vulnerabilities in the Jacuzzi SmartTub app could allow to access (..)

Small Business 85

Small Business Spyware Data breaches Surveillance 85

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Spyware 79

Spyware Ransomware Malware Data breaches 79

SecureWorld News

NOVEMBER 29, 2021

In cybersecurity, threats are like mosquitoes on a humid August evening. For end users, threat intelligence is key to improving the configuration of environments and defenses. Which is something Google is hoping to help make easier with its new Threat Horizons report. So how are malicious threat actors gaining access?

Passwords 85

Passwords Cryptocurrency Authentication Software 85

Centraleyes

APRIL 16, 2024

However, the evolving threat landscape necessitates a shift toward more comprehensive data loss prevention methods considering data in various states—whether at rest, in motion, or in use. Regular assessments and adjustments based on emerging threat landscapes contribute to the longevity of the DLP framework.

Encryption 52

Encryption Education Risk Healthcare 52