119/68 Thursday, March 27, 2025 Researchers from McAfee Labs have revealed that cybercriminals are abusing Microsoft’s .NET MAUI (Multi-platform App UI) framework to distribute Android malware capable of operating across platforms. Originally designed by Microsoft to replace Xamarin and expand beyond mobile platforms, .NET MAUI is now being misused to embed malicious code into seemingly […]
118/68 Wednesday, March 26, 2025 Ukrzaliznytsia, Ukraine’s national railway operator, has been hit by a large-scale cyberattack that brought down its online ticketing system, affecting both mobile apps and the official website. The disruption forced a surge of passengers to physical ticket counters, causing overcrowding, delays, and widespread frustration among travelers across the country. Despite […]
117/68 Wednesday, March 26, 2025 LayerX Labs has uncovered a new phishing campaign that originally targeted Windows users but has now shifted its focus to macOS users. The shift follows the rollout of new anti-scareware features in early 2025 by Microsoft, in collaboration with Chrome and Firefox, which led to a 90% drop in successful […]
116/68 Tuesday, March 25, 2025 The Cloak ransomware group has claimed responsibility for a cyberattack targeting the Virginia Attorney General’s Office in February 2025. The incident forced the agency to shut down its IT systems, including email and VPN, and temporarily revert to paper-based operations. The breach was reported to the FBI, state police, and […]
115/68 Tuesday, March 25, 2025 Cloudflare, a leading network and security provider, has officially disabled all HTTP connections to api.cloudflare[.]com, enforcing HTTPS-only access to improve data security. This move aims to eliminate the risk of sensitive data exposure—such as API keys or tokens—over unsecured channels, especially on public networks vulnerable to Man-in-the-Middle (MitM) attacks. While […]
114/68 Monday, March 24, 2025 Cybersecurity experts have issued warnings following the discovery of active attacks exploiting two newly disclosed vulnerabilities in Cisco Smart Licensing Utility—CVE-2024-20439 and CVE-2024-20440. Both flaws, recently patched by Cisco, are rated Critical with a CVSS score of 9.8. Details of the Vulnerabilities: Although Cisco has released software updates to address […]
113/68 Monday, March 24, 2025 A new phishing scheme is targeting Instagram business accounts by using fake chatbots and spoofed support emails to trick users into handing over their login credentials. According to the Cofense Phishing Defense Center, the attack begins with a fake notification email claiming that a user’s ad has been suspended due […]
112/68 Friday, March 21, 2025 California Cryobank (CCB), one of the largest sperm banks in the United States, has disclosed a data breach that may have exposed customers’ personal information to unauthorized access. Suspicious activity was first detected on April 21, 2024, and an investigation revealed that attackers accessed or stole certain files between April […]
111/68 Friday, March 21, 2025 Since 2016, a long-running malware campaign known as “DollyWay” has infected more than 20,000 WordPress websites worldwide, redirecting users to malicious sites including dating scams, online gambling platforms, and various other fraudulent destinations. The campaign has evolved over the years, employing advanced evasion techniques and reinfection mechanisms to maintain persistence. […]
110/68 Thursday, March 20, 2025 Microsoft has identified a new malware strain called StilachiRAT, a Remote Access Trojan (RAT) with advanced techniques for hiding itself and stealing sensitive data such as browser passwords, cryptocurrency wallet information, and system details. The malware leverages the WWStartupCtrl64.dll module and utilizes WMI Query Language (WQL) through Web-based Enterprise Management […]
