Arab Security Consultants

  • Home
  • Courses
    • EC-Council Programs
    • EC-Council iWeek Courses
    • PECB
      • ISO/IEC 27001 Lead Implementer
      • ISO/IEC 27001 Lead Auditor
    • Cyber Book
  • Organized Events
    • Arab Security Conference
    • Arab Security Cyber WarGames
  • Services
    • CodeRed
    • OhPhish
    • Risk Assessment
    • Social Engineering
    • Identity & Access Security
    • Vulnerability Assessment
    • Penetration Testing
  • Training centers
  • EC-Council with ASC
  • News
  • Contact Us
  • Home
  • Posts tagged "cyberSecurity"
 

Tag: cyberSecurity

Linux SSH Servers Targeted in ShellBot Malware Campaign

Tuesday, 21 March 2023 by ASC

A new campaign targeting poorly managed Linux SSH servers has been identified, deploying various strains of malware called ShellBot. The AhnLab Security Emergency Response Center (ASEC) reported that ShellBot, also known as PerlBot, is a DDoS bot malware developed in Perl, which typically uses the IRC protocol for communication with its C&C server. According to

  • Published in News
Tagged under: CyberAttacks, cyberSecurity

The Chinese hackers exploited a zero-day vulnerability in Fortinet to espionage

Sunday, 19 March 2023 by ASC

Mandiant, the threat intelligence firm, has linked the zero-day exploitation of a medium-severity security flaw in the Fortinet FortiOS operating system to a suspected Chinese hacking group. The attack is part of a broader campaign to deploy backdoors onto Fortinet and VMware solutions and maintain persistent access to victim environments. Mandiant is tracking the malicious

  • Published in News
Tagged under: CyberAttacks, cyberSecurity

A 3-year-old vulnerability has been exploited by multiple hacker groups to breach U.S. government agencies

Thursday, 16 March 2023 by ASC

Recently, a critical security flaw in Progress Telerik was exploited by multiple threat actors, including a nation-state group, to gain unauthorized access to an unnamed federal entity in the U.S. The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing and Analysis Center (MS-ISAC) jointly issued an advisory, revealing

  • Published in News
Tagged under: cyberSecurity

Fake ChatGPT Chrome extensions hijack Facebook accounts to display malicious ads

Tuesday, 14 March 2023 by ASC

A malicious Chrome browser extension branded as ChatGPT has been discovered to hijack Facebook accounts and create rogue admin accounts. This highlights one of the different methods cyber criminals are using to distribute malware. Guardio Labs researcher Nati Tal warns that by hijacking high-profile Facebook business accounts, the threat actor creates an army of Facebook

  • Published in News
Tagged under: cyberSecurity

The Lazarus Group exploits a zero-day vulnerability to hack a South Korean financial institution

Thursday, 09 March 2023 by ASC

The Lazarus Group, believed to be linked to North Korea, has been observed exploiting undisclosed software vulnerabilities to breach a South Korean financial business entity twice within a year. The first attack in May 2022 involved the use of a vulnerable version of a widely-used certificate software, while the second attack in October 2022 exploited

  • Published in News
Tagged under: CyberAttacks, cyberSecurity

An attack on critical infrastructure firms using Facebook ads is known as SYS01stealer

Wednesday, 08 March 2023 by ASC

Cybersecurity experts have uncovered a new information stealer called SYS01stealer, which targets critical government infrastructure employees, manufacturing companies, and other sectors. Israeli cybersecurity firm Morphisec reports that the attack campaign aims to steal sensitive information, such as login data, cookies, and Facebook ad and business account information. The attackers lure victims into clicking on a

  • Published in News
Tagged under: cyberSecurity, CyberThreats

Southeast Asian governments are being targeted by Sharp Panda’s new Soul Framework version

Wednesday, 08 March 2023 by ASC

Chinese threat actor Sharp Panda has been targeting high-profile government entities in Southeast Asia since late last year in a cyber espionage campaign. Israeli cybersecurity company Check Point has identified the use of a new version of the Soul modular framework as characterizing the intrusions, marking a departure from the group’s attack chains observed in

  • Published in News
Tagged under: CyberAttacks, cyberSecurity

Mexican banks are being targeted by FiXS ATM malware

Sunday, 05 March 2023 by ASC

A new ATM malware strain called FiXS has been detected attacking Mexican banks since the beginning of February 2023. Latin American cybersecurity firm Metabase Q reported that the ATM malware is concealed within another program that appears to be non-malicious. FiXS is not dependent on any specific vendor, is vendor-agnostic, and can infect any teller

  • Published in News
Tagged under: CyberAttacks, cyberSecurity, CyberThreats

A new variant of the SysUpdate malware attacks Linux and employs evasion tactics

Thursday, 02 March 2023 by ASC

The threat group known as Lucky Mouse has released a Linux version of its SysUpdate malware toolkit, enabling it to target Linux devices. The updated artifact, which dates back to July 2022, has new features aimed at avoiding security software and resisting reverse engineering. Lucky Mouse, also known as APT27, Bronze Union, Emissary Panda, and

  • Published in News
Tagged under: CyberAttacks, cyberSecurity

Users are vulnerable to command injection attacks due to a critical flaw in Cisco IP Phone Series

Thursday, 02 March 2023 by ASC

On March 1, 2023, Cisco released security updates for its IP Phone series 6800, 7800, 7900, and 8800 to address a critical command injection vulnerability (CVE-2023-20078) rated 9.8 on the CVSS scoring system. The flaw is caused by a web-based management interface, which lacks proper user-supplied input validation, allowing an unauthenticated, remote attacker to inject

  • Published in News
Tagged under: cyberSecurity, CyberThreats
  • 1
  • 2
  • 3
  • 4
  • Home
  • Contact Us
  • Services
  • Training Centers
  • GET SOCIAL

Arab Security Consultants | Copyright © 2023 All rights reserved.

TOP