126/68 Tuesday, April 1, 2025 The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a new malware strain named RESURGE, which is actively exploiting CVE-2025-0282, a vulnerability in Ivanti Connect Secure (ICS) appliances. In a recently published Malware Analysis Report (MAR), CISA highlights that RESURGE exhibits behaviors similar to SPAWNCHIMERA malware, but […]
125/68 Tuesday, April 1, 2025 Cybersecurity researchers at ThreatFabric have discovered a new Android banking trojan named Crocodilus, which is actively targeting users in Spain and Turkey. Designed to take full control of infected devices, the malware leverages advanced techniques such as remote access, screen recording, and overlay attacks to steal user credentials. Crocodilus disguises […]
124/68 Monday, March 31, 2025 The U.S. Department of Justice (DOJ) and the FBI have seized $8.2 million in USDT connected to a romance baiting scam, also known as a pig butchering scheme. This form of fraud involves building fake romantic relationships through dating apps or social media to trick victims into transferring funds into […]
123/68 Monday, March 31, 2025 Cybersecurity researchers have uncovered a new Phishing-as-a-Service (PhaaS) platform called Morphing Meerkat, capable of spoofing login pages for over 114 well-known brands. This tool dynamically generates fake login pages based on a target’s email provider, determined by querying DNS MX records—for example, Gmail, Outlook, or Yahoo—ensuring the phishing page matches […]
122/68 Friday, March 28, 2025 Google has addressed the first zero-day vulnerability of the year in Chrome for Windows, which was actively exploited in attacks targeting organizations in Russia. Tracked as CVE-2025-2783, the vulnerability stems from improper handle management in Mojo, the IPC (Inter-Process Communication) system used in Chromium-based browsers. The issue was discovered and […]
121/68 Friday, March 28, 2025 The UK Information Commissioner’s Office (ICO) has fined Advanced Computer Software Group Ltd £3.07 million (approximately 135 million baht) following a ransomware attack in 2022 that resulted in the personal data of 79,404 individuals, including NHS patients, being compromised. The breach severely impacted several healthcare services, including the NHS 111 […]
120/68 Thursday, March 27, 2025 Astral Foods, South Africa’s largest poultry producer, disclosed that it suffered a cyberattack on March 16, 2025, which temporarily disrupted operations in its Poultry Division, including production and delivery. The incident caused the company to incur financial losses exceeding 20 million South African Rand (approximately $1 million USD). The company […]
119/68 Thursday, March 27, 2025 Researchers from McAfee Labs have revealed that cybercriminals are abusing Microsoft’s .NET MAUI (Multi-platform App UI) framework to distribute Android malware capable of operating across platforms. Originally designed by Microsoft to replace Xamarin and expand beyond mobile platforms, .NET MAUI is now being misused to embed malicious code into seemingly […]
118/68 Wednesday, March 26, 2025 Ukrzaliznytsia, Ukraine’s national railway operator, has been hit by a large-scale cyberattack that brought down its online ticketing system, affecting both mobile apps and the official website. The disruption forced a surge of passengers to physical ticket counters, causing overcrowding, delays, and widespread frustration among travelers across the country. Despite […]
117/68 Wednesday, March 26, 2025 LayerX Labs has uncovered a new phishing campaign that originally targeted Windows users but has now shifted its focus to macOS users. The shift follows the rollout of new anti-scareware features in early 2025 by Microsoft, in collaboration with Chrome and Firefox, which led to a 90% drop in successful […]
