Archive - Cyber Oracle

Google Rushes Emergency Fix for Zero-Day Chrome Vulnerability CVE-2024-4761 Under Active Exploitation

Plus, VMware Issues Urgent Fixes for Critical Security Flaws in Workstation and Fusion Products

May 14, 2024 •

April 2024

Supply Chain Attack Unveiled in Linux Distro Utility XZ Utils, Facilitating Remote Code Execution

Plus, Earth Freybug Cyber Threat Group Unleashes New UNAPIMON Malware, Poses Significant Security Risk

Apr 2, 2024 •

March 2024

BIPClip: Python Packages on PyPI Infected to Steal Cryptocurrency Wallet Recovery Phrases

Plus, WordPress Plugin Vulnerabilities Fuel Malware Campaigns, Infecting Thousands of Sites

Mar 12, 2024 •

February 2024

Guardio Uncovers Sophisticated Email Hijacking Scheme Involving 8,000 Subdomains of Major Brands, Orchestrated by Threat Actor ResurrecAds

Plus, Ukrainian Entities in Finland Targeted in Malicious Campaign Using IDAT Loader to Distribute Remcos RAT

Feb 26, 2024 •

Chinese Threat Actor GoldFactory Unveils Sophisticated Banking Trojans, Including iOS Malware GoldPickaxe, Targeting Asian Financial…

Plus, Russian Threat Actor Turla Deploys TinyTurla-NG Backdoor in Campaign Targeting Polish NGOs

Feb 16, 2024 •

Russian State-Backed Hacker Group APT28 Executes Global NTLM v2 Hash Relay Attacks on High-Profile Targets

CERT-UA Issues Warning as Malware DirtyMoe Infects Over 2,000 Computers in Ukraine; Ongoing Phishing Campaign Targets Military Personnel

Feb 2, 2024 •

January 2024

Critical Google Kubernetes Engine Vulnerability Exposes 250,000 Clusters: Threat Actors Could Seize Control with Google Account

Plus, Ransomware Group Kasseika Employs BYOVD Tactic to Disable Security Processes on Windows Hosts

Jan 24, 2024 •

Over 178,000 SonicWall Firewalls at Risk: Critical Vulnerabilities Expose Devices to DoS and Remote Code Execution

Plus, Phemedrone Stealer Exploits Patched Windows Flaw: Threat Actors Target Browsers, Crypto Wallets, and Messaging Apps

Jan 16, 2024 •

FBot Emerges: Python-Based Hacking Tool Targets AWS, Microsoft 365, PayPal, and More

Plus, GitHub Becomes a Haven for Cyber Threats: Adversaries Exploit Platform's Ubiquity for Stealthy Malicious Activities

Jan 12, 2024 •

Google Settles Class-Action Lawsuit Over 'Incognito' Mode Tracking Allegations

Plus, Albania's Assembly and Telecom Giant Hit by Cyber Attacks: Iran-Linked Hacker Group Claims Responsibility

Jan 3, 2024 •

December 2023

Over 15,000 GitHub Repositories Vulnerable to "Repojacking" Attacks, Threatening Software Supply Chain

Plus, Unveiling Post-Exploitation Deception: Fake Lockdown Mode on Compromised iPhones Threatens Security

Dec 5, 2023 •

November 2023

Critical Vulnerabilities Expose Windows Hello Authentication on Popular Laptops: Research

Plus, Indie AI Tools: The Unchecked Frontier in Enterprise Security Threats

Nov 28, 2023 •

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts