Shadowroot Ransomware Lures Turkish Victims via Phishing Attacks

The ransomware is rudimentary with basic functionalities, likely having been created by an inexperienced developer — but it’s effective at locking up files and sucking up memory capacity.   A ransomware strain coined “ShadowRoot” has been found targeting Turkish businesses through phishing attacks. The phishing emails contain a PDF attachment disguised as an invoice with embedded…

Read More

SAP AI Core Vulnerabilities Expose Customer Data to Cyber Attacks

Cybersecurity researchers have uncovered security shortcomings in SAP AI Core cloud-based platform for creating and deploying predictive artificial intelligence (AI) workflows that could be exploited to get hold of access tokens and customer data. The five vulnerabilities have been collectively dubbed SAPwned by cloud security firm Wiz. “The vulnerabilities we found could have allowed attackers to access customers’ data…

Read More

Microsoft’s Partnership With Middle East AI Firm Under Scrutiny

A much-trumpeted deal between Microsoft and Group 42 in the Middle East and Africa could be quashed due to geopolitical concerns, as US policymakers raise questions about Group 42’s relationship with China, highlighting challenges US companies face in forging business ties in the region. Despite assurances from Group 42 that it is cutting all military…

Read More

Raman Research Institute scientists make breakthrough in cybersecurity

Scientists at the Raman Research Institute (RRI) have created a new, user-friendly way to generate truly unpredictable random numbers, which is crucial for stronger encryption in quantum communications. RRI said this advance could revolutionize how we protect sensitive data in the future a breakthrough in cyber security. Stopping malicious agents “The security of quantum communications…

Read More

Barracuda Launches email Protection Solution in India

According to a recent study, more than half of India’s CEOs put cloud-related threats at the top of their list of concerns Cybersecurity solutions company Barracuda Networks, Inc., has announced the expansion of email security products to the Indian market to help customers comply with national regulations while deploying Barracuda’s advanced email protection, data classification,…

Read More

Hackers Leaks with 1,000 Crore Passwords Online in Biggest Cyber Security Breach

Passwords Leaked: A file with around 10 billion (1,000 crore) passwords was leaked via an online hacking forum, according to a report by Semafor. The compilation, which included old and new password breaches, was posted online on July 4, and is the largest such leak yet, it added. The report noted the risk of credential-stuffing attacks being…

Read More

Cisco Warns of regreSSHion RCE Impacting Multiple Products

Cisco has issued a security advisory regarding a critical remote code execution (RCE) vulnerability, dubbed “regreSSHion,” that affects multiple products. The vulnerability tracked as CVE-2024-6387, was disclosed by the Qualys Threat Research Unit on July 1, 2024. It impacts the OpenSSH server (sshd) in glibc-based Linux systems and has the potential to allow unauthenticated attackers…

Read More

Dark Web offers Botnets for as low as $99, fuelling Cyberattacks

Hackers add more devices to the network of slave digital devices, which would do what hackers want them to do. These networks, called botnets, launch large-scale cyberattacks, including the dreaded Distributed Denial of Services (DDoS). Now Dark web peers are selling botnets at throw-away prices ranging from $99 on the Dark Web, according to cybersecurity…

Read More

Cybersecurity researchers of CloudSEK uncover rise in Investment scams on Social media

Investment scams primarily operate through social media and messaging platforms like WhatsApp and Telegram. CloudSEK found a surge in malicious content on these platforms — over 29,000 fraudulent ads on Facebook and a 81,000 fake investment groups on WhatsApp. The report covers an in-depth report exposing a troubling rise in investment scams targeting individuals in…

Read More

Microsoft Alerts More Customers to Email Theft in Expanding Midnight Blizzard Hack

Shockwaves from the Russian government’s hack of Microsoft’s corporate infrastructure continue to spread with news that the software giant is notifying surprised customers that their emails were also stolen by the Midnight Blizzard hackers. According to published reports, Redmond’s incident response team is providing a secure portal for customers to view specifics of emails stolen…

Read More