NAFO goes after Truth Social
The North Atlantic Fella Organization (NAFO) is trying to take down Donald Trump’s Truth Social platform. NAFO is an online activist group founded to combat pro-Russia propaganda related to the invasion of Ukraine. Last month, the group turned its attention to Trump’s social network and launched a campaign to take over the trending topics section […]
Android 14 Bug Cripples Multiple User Profiles on Pixel Devices
Android 14 users beware! A critical bug is affecting devices running the new operating system, particularly those utilizing the “multiple profiles” feature. This bug renders devices practically unusable, locking users out of their own storage. The issue, likened to “ransomware” by some users, initially appeared limited to the Pixel 6 series. However, with the wider […]
First Kazakhstan APT group found
A new report from the Cisco Talos group this week, researchers detail how YoroTrooper, a cyberespionage group likely from Kazakhstan (based on language and currency use), has been active since June 2022 targeting governments in CIS countries. Despite obfuscating their origins through tactics like using Azerbaijani VPNs, they’ve compromised government websites and officials’ accounts. Their […]
MGM Resorts and Caesars hit by ransomware attack
MGM Resorts and Caesars have been hit by a cyberattack in which ransomware was deployed and has taken multiple of their systems offline across several hotels and casinos that they operate. The initial access tactic was social engineering which has prompted inquiries regarding past actions associated with malicious actors and the weak points they exploit. […]
Cybercrime wave driven by youth hacking group
In the last two years, many significant cybersecurity breaches share a common factor: a young, online community known for their bold attacks. At SentinelOne’s LABScon cyber threat conference, researchers highlighted an online group named “the Com,” which has become pivotal in the cybercrime world, notably in attacks on Las Vegas establishments that severely impacted several […]
Egyptian Presidential Candidate targeted with Predator spyware
In a report published by Citizen Lab, details have emerged how the presential candidate Ahmed Eltantawy has been targeted with predatory spyware made by Cytrox. The spyware was sent to Ahmed via SMS and WhatsApp after he announced his intention to run for president of Egypt. The report sheds light on how the candidate’s phone […]
International Criminal Court has been breached
With the number of regional conflicts increasing, it is worrying to see that the International Criminal Court has been victim of a cyber-attack. Potentially exposed information includes criminal evidence to names of protected witnesses. From Reuters: The ICC said it had detected unusual activity on its computer network at the end of last week, prompting […]
Critical WebP vulnerability affects Chrome, Firefox and more
Last week, Citizen Lab disclosed a vulnerability that they are calling BLASTPASS which they found after investigating an iOS device used by an individual working at a civil society organization based in Washington, DC. The vulnerability was exploited to deliver the NSO Group’s Pegasus commercial spyware. The 0-click vulnerability can affect iPhones running the latest […]
Flaws in PowerShell Gallery leave users and cloud environments vulnerable
The PowerShell Gallery is the central repository for PowerShell content, offering modules, scripts, and DSC resources. Users can share and collaborate on PowerShell resources, making it a hub for the community. It integrates with the PowerShell module management tool, allowing users to directly install, update, and manage modules and scripts. The platform promotes best practices […]
Introduction of Passkeys
Last year Apple, Google and Microsoft announced a joint effort to kill the password. Ron Amadeo for Ars Technica: The first Thursday of May is apparently “World Password Day,” and to celebrate Apple, Google, and Microsoft are launching a “joint effort” to kill the password. The major OS vendors want to “expand support for a […]