APT hackers spread Android malware through Syrian e-Gov portal

The Syrian e-Government Web Portal was used by an APT actor to launch a new campaign using Android malware, revealing an updated arsenal targeted to compromise victims.   According to…

Joker Trojan discovered in 11 Android apps: Reports

As more people use the internet, Android malware is getting more common.   On the other hand, there is a huge hazard on the Internet that can cause a lot…

XLoader windows info-stealer malware now designed to attack macOS

The popular Windows info stealing malware has been transformed into a new strain known as XLoader, which can now attack Mac devices as well.   On an underground forum, XLoader…

WiFiDemon – iPhone Wi-Fi bug could also enable RCE

Carl Schou, a researcher, uncovered a new WiFi bug in June that can permanently disable iPhone users’ WiFi by disconnecting it.   The WiFi bug can be triggered by merely…

Pegasus Project – Spyware used to target journalist, activists and others

The Pegasus Project was a large-scale investigation into the leak of 50,000 phone numbers of possible spying targets, which indicated NSO Group’s malware was being exploited.   According to an…

Saudi Aramco data breach: Hackers stole 1 TB worth of data

Saudi Aramco suffers a massive data breach. Hackers stole 1 TB of confidential data belonging to Saudi Aramco, the Saudi Arabian Oil Company, and sold it on the dark web.…

Israeli firm Candiru exploited Windows zero-days to deploy spyware

Candiru, an Israeli surveillance company also known as Sourgum, used Windows zero-day exploits to release DevilsTongue, a new Windows malware.   According to Microsoft and Citizen Lab researchers, Candiru’s spyware…

Trickbot makes a comeback with its VNC module for high-value targets

Despite law enforcement actions intended at eliminating the Trickbot botnet, it continues to evolve. The creators recently released an upgrade for the VNC module, which is used to control infected…

REvil ransomware gang’s websites shut down: Report

The REvil ransomware operation’s infrastructure and websites have unexpectedly vanished from the dark web, leading to speculation that the criminal operation has been shut down.   REvil, or Sodinokibi, is…

American fashion brand Guess suffers data breach

Guess, an American fashion brand, was hit by a ransomware attack in February, and the company has now announced a data breach and notified affected customers.   The attack was…