May 21, 2023Ravi LakshmananSoftware security/malware The maintainers of the Python Package Index (PyPI), the official third-party software repository for the Python programming language, have temporarily disabled the ability for users to sign up and upload new packages until further notice.…
The identity of the second attacker behind golden chicken According to cybersecurity firm eSentire, the malware was discovered due to a fatal operational security mistake. The person in question lives in Bucharest, Romania and is known to be codenamed Jack.…
May 20, 2023Ravi LakshmananCyber Crime / Ransomware The notorious cybercriminal group known as FIN7 has been observed deploying Cl0p (aka Clop) ransomware, marking the threat actor’s first ransomware campaign since late 2021. Having detected this activity in April 2023, Microsoft…
May 20, 2023Ravi LakshmananMobile Security/Cyberattack The US Cybersecurity and Infrastructure Security Agency (CISA) has warned that a medium-severity flaw affecting Samsung devices is being actively exploited. This issue is tracked as CVE-2023-21492 (CVSS score: 4.4) and affects some Samsung devices…
The CommonMagic malware implant is associated with a previously unknown advanced persistent threat campaign related to the Russian-Ukrainian conflict and relies on a new modular framework. The framework, dubbed “CloudWizard,” was discovered by Kaspersky security researchers and described in an…
A vulnerability has been discovered in the KeePass password manager software (v2.X) that allows an attacker to dump the master password from the program’s memory. This vulnerability (CVE-2023-32784) was discovered by security researcher Dominik Reichl and will be resolved in…
Microsoft has released a new report alerting businesses to the alarming surge in business email compromise (BEC) attacks and the evolution of tactics employed by cybercriminals. Entitled “The Confidence Game,” the Cyber Signals report provides a comprehensive analysis of the…
Two malicious packages found in the npm package repository turned out to be hiding an open-source information-stealing malware called TurkoRat. Together, these packages (named nodejs-encrypt-agent and nodejs-cookie-proxy-agent) were downloaded about 1,200 times and were available for over two months before…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA), the FBI and others have jointly issued an alert and recommended actions to organizations to take to mitigate the threat posed by the BianLian ransomware attack. Targeting various industry sectors since June…
Security experts have warned of a surge in attacker interest in voice cloning as a service (VCaaS) on the dark web designed to streamline deepfake-based fraud. Recorded Future’s latest report, I have no mouth so I have to commit a…
All Rights Reserved. Kowatek Blog by IWUCHI
Home | About Us | Disclaimer | Privacy Policy | Contact Us
