Author: Admin
Cybersecurity researchers have discovered a wide phishing campaign that uses fake CAPTCHA images that are divided through PDF -documents located on the Webflow content delivery (CDN) to deliver malicious Lumma software. Netskope laboratory threatened that it had revealed 260 unique domains that conduct 5000 PDF phishing files that redirect victims to malicious sites. “The attacker uses SEO to trick the victims to visit pages by clicking on the results of the malicious search engine,” security researcher Jan Michael Alcantar – Note In a report that shared with Hacker News. “While most phishing pages focus on the theft of credit card…
Remote desktop (RDP) is an amazing technology developed by Microsoft that allows you to access and manage another network computer. It’s like your office computer with you wherever you have gone. For businesses, this means that IT persons can manage the systems remotely, and employees can work at home or anywhere, making RDP a valid game change in today’s work settings. But here’s the catch: since RDP is available online, it is also the main goal for unethical hackers. If someone receives unauthorized access, they can potentially capture your system. That’s why it is so important to provide RDP correctly.…
February 28, 2025Red LakshmananFinancial cheater / cyber -beno Actor threats known as Sticky werewolf He was associated with targeted attacks, first of all in Russia and Belarus to deliver malicious software for theft of Lumma with the help of a previously undocumented implant. Cyber security company Kaspersky monitors activity under the name of Angry Likho, which, she said, has a “strong similarity” to Arouse (AKA Core Werewolf, Gamacopy and Pseudogamaredon). “However, Angry Likho attacks are usually oriented with more compact infrastructure, limited implant spectrum and focus on employees of large organizations, including state institutions and their contractors,” Russian company -…
February 28, 2025Red LakshmananAPI / security security AI safety On Thursday, Microsoft revealed four people who, according to him, became the Azure Enterprise abuse scheme, which involves the use of unauthorized access to generative artificial intelligence (Genai) to create offensive and harmful content. The company called LLMJacking has sent various AI offers, including Microsoft Azure Openai services. The technical giant tracks the cybercrime network as a Storm-2139. People named – Arian Yadegarnia Aka “Fiz” Iran, Alan Crisius, Aka “Drag” of the United Kingdom, Ricky Jen, Aka “CG-DOT” from Hong Kong, China, and PHUNG PHUNG TAN AKA “Osacu” from Vietnam “Storm-2139…
A data set used to prepare large language models (LLMS) has been found, contains almost 12,000 live secrets that allow you to successfully authenticate. The obtained data once again emphasize how tough accounts create a serious risk for both users and organizations, not to mention the problem when LLM eventually implies their users dangerous coding practice. Security with Truffel said she had loaded the December 2024 archive with General crawlingSupporting free open data repository. The massive data set contains more than 250 billion pages covering 18 years. The archive specifically contains 400 TV compressed web, 90,000 WARC files (web -archive…
February 27, 2025Red LakshmananCyberCrime / Android Cybersecurity researchers have discovered an updated version of malicious Android software called Tgtoxic . “Modification observed in Tgtoxic Useful Load – Note In a report published this week. Tgtoxic was First documented According to the Micro trend in the early 2023, describing it as a banking trojan, capable of stealing powers and means from the crystals, as well as banking and financial applications. It has been discovered in the wild at least from July 2022, mainly focusing on mobile users in Taiwan, Thailand and Indonesia. Then, in November 2024, a firm on the prevention…
February 27, 2025Red LakshmananCriminal software / intelligence threats The new company focuses on the company in Taiwan with malicious software known as Winos 4.0 Within the framework of phishing emails, which are masked as the National Taxation Bureau of the country. A company found last month’s Fortinet Fortiguard Labs, notes out of previous attack chains that used malicious apps related to games. “The sender claimed that the malicious file was a list of enterprises planned for the tax inspection and asked the recipient to transfer the Treasury information,” the security researcher Pai Khan Liao – Note In a report that…
February 27, 2025Hacker NewsArtificial Intelligence / Browser Security Organizations are either already making Genai decisions, evaluating the strategies for integrating these instruments into their business plans, or both. For the management of informed decision-making and effective planning, the availability of rigid data is important-al-olive data remains surprisingly deficient. “Report on Enterprise Genai data safety”By Layerx gives unprecedented ideas about the practical application of AI tools in the workplace, emphasizing critical vulnerabilities. Fighting the real world’s telemetry from Enterprise Layerx, this report is one of the few reliable sources in which the generation is in detail. For example, this shows that…
February 27, 2025Red LakshmananMalicious software / network safety The actor of the threat, known as space pirates, was associated with a malicious company aimed at Russian information technology (IT) with previously unregistered malware programs called Luckystrike Agent. The activity was discovered in November 2024 by the solar, cybersecurity of the Russian state telecommunications company Rostelecom. This is the tracking activity under the name of Erudite Mogwai. The attacks are also characterized by the use of other tools such as Act Ratalso called Shadowpad Light and an individual version Associate utility call Stowawaypreviously used by other China groups. “Erudite Mogwai is…
February 27, 2025Red LakshmananVulnerability / safety network A new malware company focused on Edge device from Cisco, ASUS, Qnap and Synology was noted to redo them into a botnet called Polaredge at least from the end of 2023. French Cybersecurity Company SEKOIA – Note It observed unknown threats that use Cve-2013-20118 (CVSS rating: 6.5), a critical lack of security that affects Cisco Small Business RV016, RV042G, RV082, RV320 and RV325, which can lead to arbitrary commands on sensitive devices. The vulnerability remains unwavering due to the status of routers reaching the end of life (EOL). According to the softening, Cisco…