The threat actor known as Transparent Tribe has continued to unleash malware-laced Android apps as part of a social engineering campaign to target individuals of interest.
“These APKs continue the group’s trend of embedding spyware into curated video browsing applications, with a new expansion targeting mobile gamers, weapons enthusiasts, and TikTok fans,” SentinelOne security researcher Alex
Tag: insight
-
CapraRAT Spyware Disguised as Popular Apps Threatens Android Users
-
Indian Software Firm’s Products Hacked to Spread Data-Stealing Malware
Installers for three different software products developed by an Indian company named Conceptworld have been trojanized to distribute information-stealing malware.
The installers correspond to Notezilla, RecentX, and Copywhiz, according to cybersecurity firm Rapid7, which discovered the supply chain compromise on June 18, 2024. The issue has since been remediated by Conceptworld as of June 24 -
End-to-End Secrets Security: Making a Plan to Secure Your Machine Identities
At the heart of every application are secrets. Credentials that allow human-to-machine and machine-to-machine communication. Machine identities outnumber human identities by a factor of 45-to-1 and represent the majority of secrets we need to worry about. According to CyberArk’s recent research, 93% of organizations had two or more identity-related breaches in the past year. It is clear that we
-
New OpenSSH Vulnerability Could Lead to RCE as Root on Linux Systems
OpenSSH maintainers have released security updates to contain a critical security flaw that could result in unauthenticated remote code execution with root privileges in glibc-based Linux systems.
The vulnerability has been assigned the CVE identifier CVE-2024-6387. It resides in the OpenSSH server component, also known as sshd, which is designed to listen for connections from any of the client -
A week in security (June 24 – June 30)
Last week on Malwarebytes Labs:
TEMU sued for being “dangerous malware” by Arkansas Attorney General
“Poseidon” Mac stealer distributed via Google ads
Federal Reserve “breached” data may actually belong to Evolve Bank
Malwarebytes Premium Security stops 100% of malware during AV Lab test
Neiman Marcus confirms breach. Is the customer data already for sale?
Change Healthcare confirms the customer data stolen in ransomware attack
Last week on ThreatDown:
Upgrade now! Critical Fortra FileCatalyst Workflow vulnerability needs your attention
Upgrade now! New MOVEit Transfer vulnerability under active exploitation
GrimResource MSC attack uses 5-year-old vulnerability
From weeks to hours: Why ransomware attacks are getting quicker
Stay safe!
Our business solutions remove all remnants of ransomware and prevent you from getting reinfected. Want to learn more about how we can help protect your business? Get a free trial below.
-
Juniper Networks Releases Critical Security Update for Routers
Juniper Networks has released out-of-band security updates to address a critical security flaw that could lead to an authentication bypass in some of its routers.
The vulnerability, tracked as CVE-2024-2973, carries a CVSS score of 10.0, indicating maximum severity.
“An Authentication Bypass Using an Alternate Path or Channel vulnerability in Juniper Networks Session Smart Router or Conductor
