Infosectrain News

Hackers are always on the lookout for low-hanging fruit and exploitable vulnerabilities, and they aren't necessarily looking at "huge" mainstream applications like Office. A productivity tool or even an add-on can sometimes be the gateway via which hackers gain access to an environment and carry out their nex...

Threat actors are exploiting Alibaba Cloud (Aliyun) infrastructure to launch cryptocurrency mining malware, according to security experts. To achieve their crypto mining ambitions, cybercriminals are targeting Alibaba Elastic Computing Service (ECS) instances and deactivating specific security measures. Accor...

Romanian officials have reported the arrest of two people for their roles as REvil ransomware family associates, striking a serious blow to one of the most prominent cybercrime gangs in history. While Europol affirmed that the suspects are considered to have harmonized more than 5,000 ransomware attacks and t...

The new Malware called PRIVATELOG from the STASHLOG family hitting the market seems to be using Common Log File System (CLFS) to avoid being detected in security researches. This has been identified lately by the team of cybersecurity researchers of FireEye’s Mandiant Advanced Practices.  CLFS (Comm...

VPN has been playing a crucial role in our work culture lately as they hide our private information but it’s not a foolproof solution. These days hackers can intercept sensitive information you submit on websites using a number of techniques and it’s a nightmare if the VPN is the one that is hacked. ...

RedCurl, a corporate espionage organization that made headlines before disappearing last year, has reappeared with new breaches targeting four companies this year, including one of Russia's largest wholesale retailers. According to researchers, it is also making tactical adjustments to its toolkit to thwart a...

On November 16, Facebook reported that a group from Pakistan targeted persons associated with the former administration, military, and law enforcement in Kabul, amid the country's government collapse. The Pakistani organization was one of four "malicious" groups disrupted by Facebook, which disabled their acc...

Microsoft had a tough month, with the monthly edition of bug fixes addressing over 60 vulnerabilities in Microsoft's stable products, as well as additional 20 Chromium security issues in Microsoft Edge. Microsoft's September Patch Tuesday affects over a dozen products, with 66 CVE-numbered vulnerabilities pat...

A password, sometimes known as a passcode, is a piece of confidential data, generally a string of characters, that is used to verify a user's identity. It not only protects our account by preventing it from being misused but also restricts it from being accessed by unauthorized users. So, many individuals lik...

On Saturday, the FBI stated that unidentified threat actors had breached one of its email systems and were sending out bogus messages about a fake "sophisticated chain attack." Hackers were able to use the FBI's legitimate email account due to a flaw on the website.   According to a non-profit ...