From Email to RAT: Deciphering a VB Script-Driven Campaign
Cyber Security Blogs Authored by Preksha Saxena and Yashvi Shah McAfee Labs has been tracking a sophisticated VBS campaign characterized by obfuscated Visual Basic Scripting (VBS). Initially delivering the AgentTesla malware, the campaign has evolved into a multi-faceted threat, employing VBS scripts as a versatile delivery mechanism. Notably, this campaign extends beyond AgentTesla, now distributing
- Published in RSS blog posts
Inside the Massive Naz.API Credential Stuffing List
Cyber Security Blogs It feels like not a week goes by without someone sending me yet another credential stuffing list. It’s usually something to the effect of “hey, have you seen the Spotify breach”, to which I politely reply with a link to my old No, Spotify Wasn’t Hacked blog post (it’s just the output
- Published in RSS blog posts
Veon Estimates Nearly $95 Million Revenue Loss Post Kyivstar Cyberattack
Cyber Security Blogs Veon, the parent company for Kyivstar, Ukraine’s top mobile operator, recently outlined the financial impact of the Kyivstar cyberattack in December. The breach is anticipated to have caused a substantial revenue shortfall for the 2024 fiscal year, estimated at around 3.6 billion Ukrainian hryvnias, or nearly $95 million. Kyivstar cyberattack resulted in
- Published in RSS blog posts
Hunters International Targets Gallup-McKinley County Schools as Their Latest Victim
Cyber Security Blogs The Hunters International ransomware group has announced its latest conquest, asserting that Gallup-McKinley County Schools in New Mexico have fallen victim to their cyber onslaught. The Gallup-McKinley County Schools cyberattack claim, however, lacks critical details such as the nature of data compromise, the extent of the breach, or the motives driving the
- Published in RSS blog posts
Out with the old and in with the improved: MFA needs a revamp
Cyber Security Blogs From AI to ZTA (zero-trust architecture), the technology responsible for protecting your company’s data has evolved immensely. Despite the advances, cybercriminals repeatedly find new and creative ways to gain access to sensitive information. This can result in devastating consequences, making it key for leaders in the industry to proactively think about threats.
- Published in RSS blog posts
Attackers Could Eavesdrop on AI Conversations on Apple, AMD, Imagination and Qualcomm GPUs
Cyber Security BlogsSecurity researchers from Trail of Bits identified a GPU memory vulnerability they called LeftoverLocals. Some affected GPU vendors have issued fixes. Read More
- Published in RSS blog posts
Androxgh0st Malware Botnet Steals AWS, Microsoft Credentials and More
Cyber Security BlogsThe Androxgh0st malware botnet is used for victim identification and exploitation in targeted networks, as well as credentials collection. Read the FBI/CISA’s tips for protecting against this malware threat. Read More
- Published in RSS blog posts
New infosec products of the week: January 19, 2024
Cyber Security Blogs Here’s a look at the most interesting products from the past week, featuring releases from Living Security, Skopenow, Skyhigh Security, and Wing Security. Skyhigh Security’s AI-driven DLP Assistant prevents critical data loss Skyhigh Security’s AI-driven DLP Assistant, which supports queries in native languages of all countries across the world, gives users the
- Published in RSS blog posts
Digital nomads amplify identity fraud risks
Cyber Security Blogs The number of foreign document verification cases in all parts of the world has grown by an average of 21% since the summer of 2021, according to Regula. It’s even higher in the US and UAE: these countries are experiencing a 25% increase. As for industries, Insurance appears to be dealing with
- Published in RSS blog posts
White House Revamps Cybersecurity Hiring Strategy
Cyber Security Blogs During his initial statements since becoming the National Cyber Director in December, Harry Coker stated that the White House plans to “reduce unnecessary barriers” that federal contractors have while trying to fill cybersecurity positions, such as the need for a bachelor’s degree. At a gathering in the Community College of Baltimore County,
- Published in RSS blog posts








