News Archives - Page 4 of 12 - Arab Security Consultants

Double-Extortion Play Ransomware Strikes 300 Organizations Worldwide

Wednesday, 27 December 2023 by Ayman Hamam

According to a new joint cybersecurity advisory from Australia and the U.S., the threat actors behind the Play ransomware are estimated to have impacted approximately 300 entities as of October 2023. “Play ransomware actors employ a double-extortion model, encrypting systems after exfiltrating data and have impacted a wide range of businesses and critical infrastructure organizations

Published in News

Tagged under: cybersecurity advisory, double-extortion model, Fortinet appliances, Microsoft Exchange, phishing, Play ransomware, ransomware landscape, vulnerability exploitation

New Malvertising Campaign Distributing PikaBot Disguised as Popular Software

Sunday, 24 December 2023 by Ayman Hamam

The malware loader known as PikaBot is being distributed as part of a malvertising campaign targeting users searching for legitimate software like AnyDesk. “PikaBot was previously only distributed via malspam campaigns similarly to QakBot and emerged as one of the preferred payloads for a threat actor known as TA577,” Malwarebytes’ Jérôme Segura said. The malware family, which first appeared in early 2023,

Published in News

Tagged under: AnyDesk, Cyber Threats, Cybersecurity Risks, Malvertising, Malware Tactics, PikaBot, Storm-0539, Threat Cluster

Microsoft Warns of Storm-0539: The Rising Threat Behind Holiday Gift Card Frauds

Sunday, 17 December 2023 by Ayman Hamam

Microsoft is warning of an uptick in malicious activity from an emerging threat cluster it’s tracking as Storm-0539 for orchestrating gift card fraud and theft via highly sophisticated email and SMS phishing attacks against retail entities during the holiday shopping season. The goal of the attacks is to propagate booby-trapped links that direct victims to adversary-in-the-middle (AiTM)

Published in News

Tagged under: Credential Hygiene, Cybersecurity Threats, Email Security, Gift Card Fraud, Microsoft 365 Defender, Multi-Factor Authentication, Phishing Attacks, Retail Security, SMS Phishing, Storm-0539

SLAM Attack: New Spectre-based Vulnerability Impacts Intel, AMD, and Arm CPUs

Sunday, 10 December 2023 by Ayman Hamam

Researchers from the Vrije Universiteit Amsterdam have disclosed a new side-channel attack called SLAM that could be exploited to leak sensitive information from kernel memory on current and upcoming CPUs from Intel, AMD, and Arm. The attack is an end-to-end exploit for Spectre based on a new feature in Intel CPUs called Linear Address Masking (LAM) as well as

Published in News

Agent Racoon Backdoor Targets Organizations in Middle East, Africa, and U.S.

Sunday, 03 December 2023 by Ayman Hamam

In a recent analysis, Palo Alto Networks Unit 42 researcher Chema Garcia revealed a targeted cyber threat affecting organizations in the Middle East, Africa, and the United States. The unknown threat actor is distributing a sophisticated backdoor named Agent Racoon, developed using the .NET framework. The malware exploits the domain name service (DNS) protocol to

Published in News

Tagged under: Africa, AgentRacoon, ASC, Backdoor, cyberSecurity, CyberThreat, DataExfiltration, DataSecurity, DNSProtocol, Egypt, HackerNews, InfoSec, ITSecurity, Malware, MiddleEast, Mimikatz, Ntospy, PaloAltoNetworks, SecurityAlert, TechNews, ThreatAnalysis, Unit42, US

Cybercriminals Using Telekopye Telegram Bot to Craft Phishing Scams on a Grand Scale

Sunday, 26 November 2023 by Ayman Hamam

More details have emerged about a malicious Telegram bot called Telekopye that’s used by threat actors to pull off large-scale phishing scams. “Telekopye can craft phishing websites, emails, SMS messages, and more,” ESET security researcher Radek Jizba said in a new analysis. The threat actors behind the operation – codenamed Neanderthals – are known to run the criminal enterprise as a

Published in News

Tagged under: Cybercrime, NeanderthalsScam, PhishingScams, SecurityThreat, TelegramBot, Telekopye, TelekopyeScam

8 Base Group Deploying New Phobos Ransomware Variant via SmokeLoader

Sunday, 19 November 2023 by Ayman Hamam

A subgroup within the infamous Lazarus Group, recognized as Sapphire Sleet, has recently altered its modus operandi by employing a variant of the Phobos ransomware in its financially motivated cyberattacks. This strategic shift has been documented by cybersecurity researchers at Cisco Talos, who have observed an uptick in activities carried out by these cybercriminals. Sapphire

Published in News

Tagged under: CybercrimeTactics, CybersecurityThreats, DigitalSecurity, MalwareDistribution, PhobosRansomware, RansomwareAttack, SapphireSleet, SmokeLoader, ThreatIntelligence, ybersecurityAnalysis

Microsoft Warns of Fake Skills Assessment Portals Targeting IT Job Seekers

Sunday, 12 November 2023 by Ayman Hamam

The well-known Lazarus Group has evolved, with a faction now setting up deceptive platforms masquerading as skill assessment portals, part of their new social engineering tactics. Identified by Microsoft as Sapphire Sleet, this alteration marks a change in the group’s persistent methods. Sapphire Sleet, also recognized as APT38, BlueNoroff, CageyChameleon, and CryptoCore, is notorious for

Published in News

Tagged under: Cyber Threats, Cybercrime, Cybersecurity Tactics, Hacker Techniques, Lazarus Group, macOS Malware, Malware Distribution, Sapphire Sleet, Social Engineering, Threat Actor

Google’s New “Independent Security Review” Badge: Enhancing App Safety in Play Store

Sunday, 05 November 2023 by Ayman Hamam

Introduction In an age where we rely heavily on mobile applications for various aspects of our daily lives, ensuring their security is paramount. Google is taking a significant step to bolster app safety in the Play Store by introducing the “Independent Security Review” badge. This badge is designed to provide users with more information about

Published in News

Tagged under: App Safety, App Security, Data Privacy, Google Play Store, Independent Security Review, Mobile App Security Verification, Mobile Application Security, Play Store, Security Standards, Transparency in Apps

Signal App Refutes Alleged Zero-Day Flaw Amidst Security Debates

Sunday, 29 October 2023 by Ayman Hamam

Signal, the renowned encrypted messaging app, has firmly pushed back against recent reports of an alleged zero-day vulnerability in its software. The company conducted a thorough investigation and stated that it found no concrete evidence to substantiate the claim. In a series of messages posted on social media platform X (formerly Twitter), Signal emphasized that

Published in News

Tagged under: Amnesty International Report, Cyber Threats, cyberSecurity, Data Security, Digital Privacy, Encryption, Signal App, Spyware Attacks, Vulnerability Market, Zero-Day Vulnerability

Category: News