Blog – Page 45 – VigilantAI

January 23, 2025
No Comments

QakBot-Linked BC Malware Adds Enhanced DNS Tunneling and Remote Access Features

January 23, 2025
No Comments

TRIPLESTRENGTH Hits Cloud for Cryptojacking, On-Premises Systems for Ransomware

January 23, 2025
No Comments

Cisco Fixes Critical Privilege Escalation Flaw in Meeting Management (CVSS 9.9)

January 22, 2025
No Comments

Trump Terminates DHS Advisory Committee Memberships, Disrupting Cybersecurity Review

January 22, 2025
No Comments

Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet

January 22, 2025
No Comments

President Trump Pardons Silk Road Creator Ross Ulbricht After 11 Years in Prison

January 22, 2025
No Comments

Discover Hidden Browsing Threats: Free Risk Assessment for GenAI, Identity, Web, and SaaS Risks

January 22, 2025
No Comments

PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack

January 22, 2025
No Comments

Oracle Releases January 2025 Patch to Address 318 Flaws Across Major Products

January 22, 2025
No Comments

Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Device

Russian Bulletproof Hosting Provider Proton66 Linked to Global Cyberattack Surge April 22, 2025
Researchers at Trustwave have uncovered a surge in malicious online activity traced to IP addresses belonging to a Russian bulletproof hosting provider dubbed Proton66. Since 8 January this year, Trustwave’s SpiderLabs researchers have seen a steep increase in mass scanning, credential brute-forcing, and exploitation attempts targeting organizations around the world. The detailed findings, including technical […]
Kirsten Doyle
“Scallywag” Scheme Monetizing Piracy Through Browser Extensions April 22, 2025
Researchers from HUMAN Security’s Satori Threat Intelligence and Research Team have uncovered a sophisticated ad fraud operation, dubbed “Scallywag,” which exploits WordPress extensions to profit from digital piracy. The scheme targeted users wanting free access to premium content—a longstanding challenge in the digital world. Scallywag operators developed and distributed WordPress plugins promising access to pirated […]
Kirsten Doyle
Researchers Warn of Critical Vulnerability in Erlang/OTP SSH April 22, 2025
A team of researchers from Ruhr University Bochum — Fabian Bäumer, Marcus Brinkmann, Marcel Maehren, and Jörg Schwenk — have discovered a critical security vulnerability affecting the SSH implementation in Erlang/OTP. Tracked as CVE-2025-32433, the flaw has been assigned a CVSS v3.1 score of 10.0, the highest possible severity rating. The vulnerability enables a malicious […]
Kirsten Doyle
Cyberattacks Soar 47% Globally – Attacks on Education Increase by 73% April 22, 2025
In the first quarter of 2025, cyberattacks surged worldwide, with businesses facing both a higher volume and greater sophistication of threats. Organizations experienced an average of 1,925 attacks per week, representing a 47% increase compared to the same period in 2024. The education sector was the most targeted industry for cyberattacks over the past year. […]
ISB Staff Reporter
Assessing the Impact of the UK’s Proposed Cyber Resilience Bill April 21, 2025
The UK government has introduced the Cyber Resilience Bill, marking a major step forward in strengthening national cybersecurity and protecting the economy against growing cyber threats. This new legislation builds on the Network and Information Systems (NIS) Regulation of 2018, which, despite its benefits, does not currently account for the full picture. The bill aims to […]
Anthony Young
Malicious PyPI Package Hijacks MEXC Orders, Steals Crypto Tokens April 21, 2025
JFrog researchers have uncovered a new supply chain attack targeting cryptocurrency users through a malicious Python package uploaded to the PyPI repository. The package, named “ccxt-mexc-futures,” masqueraded as a legitimate tool for interacting with the MEXC cryptocurrency exchange but was designed to steal users’ crypto assets. According to JFrog, the package contained an “info-stealer” malware […]
Kirsten Doyle
Leaking Apps: The Hidden Data Risks on Your Phone April 21, 2025
Personally identifiable information (PII), financial data, medical records, account credentials, and intellectual property all require strict access controls to prevent unauthorized exposure. Unfortunately, mobile applications commonly used in both personal and professional settings can compromise this data, even when users believe they are following best security practices. As mobile devices have become central to business […]
Kirsten Doyle
Senators Push to Extend Key Cybersecurity Protections April 17, 2025
Two senators have introduced a bipartisan bill to extend key cybersecurity protections that encourage businesses to share threat information with the federal government. The bill would renew provisions first signed into law under the Cybersecurity Information Sharing Act of 2015. Introduced by U.S. Senators Gary Peters (D-MI), Ranking Member of the Homeland Security and Governmental […]
Kirsten Doyle
4chan Reportedly Hacked, Moderator Information Potentially Exposed April 17, 2025
The controversial internet forum 4chan appears to have been hacked, according to multiple online reports. Alleged leaks suggest that a hacker gained access to backend infrastructure and exposed personal details of the site’s moderators. The breach first came to light when a previously inactive section of 4chan suddenly reappeared, displaying a bold message: “U GOT […]
Kirsten Doyle
Chinese Threat Group UNC5174 Caught Using New Tools in Ongoing Cyber Campaign April 17, 2025
After operating quietly for a year, a Chinese state-sponsored hacking group known as UNC5174 has launched a new cyber campaign, according to the Sysdig Threat Research Team (TRT). Sysdig researchers uncovered the campaign in late January 2025 when they spotted a malicious bash script downloading several files to maintain access on targeted systems. One of […]
Kirsten Doyle