Apple AirTag Vulnerability
A security researcher is sounding the alarm on an AirTag vulnerability that could allow a hacker to lead unsuspecting users to an iCloud phishing page. The problem persists in AirTag’s…
Akamai acquires GuardiCore
Edge security and content delivery giant Akamai Technologies announced plans to acquire GuardiCore. Akamai said the deal would add new capabilities to help customers thwart ransomware attacks by blocking the…
GriftHorse Tricks Users for Premium Service
A newly discovered Android Trojan being used in a campaign that tricks victims into subscribing to premium SMS services is believed to have over 10 million victims. Dubbed “GriftHorse” malware…
Elastic Search Vulnerability could lead to DoS Attack
Researchers discovered a new application programming interface vulnerability that can lead to attacks on Elastic Stack, a group of open source products that use APIs for critical data aggregation, search…
FinFisher hits Windows with UEFI Rootkit
FinFisher commercially developed for surveillance has been upgraded to infect Windows devices using a UEFI bootkit using a trojanized Windows Boot Manager. FinFisher is a spyware toolset for Windows, macOS,…
Tomiris backdoor linked to Nobelium
Researchers discovered new malware containing several attributes that potentially connect it to DarkHalo, the threat actor behind the Sunburst attack in connection with SolarWinds. The DarkHalo compromised a widely used…
Tanglebot Phishes Using Covid
A new smishing malware, named TangleBot, has kept stealing financial and personal information from victims. It targets Android mobile users based in the U.S. and Canada with SMS text message…
Hardening Standards for VPN
CISA and the NSA have released guidance for increasing the security VPN solutions. Multiple attacks against private organizations and government entities, were carried out by threat actors by exploiting vulnerabilities…