Mark Hughes, president of Security, DXC
Stay up to date on the latest threats, vulnerabilities and nation-state activities.
By the numbers
Actors associated with the Ducktail stealer are targeting entities in the U.S., UK and India.
The U.S. Department of Justice seized 17 website domains used to defraud businesses worldwide, evade sanctions and fund North Korea’s ballistic missile program.
Attackers shared datasets on a forum, saying the information was taken from the skincare-products maker’s branch in Spain.
The information stealer is the latest off-the-shelf malware designed to capture sensitive data from compromised Windows systems.
Android users in Israel are being targeted by a malicious version of the popular RedAlert – Rocket Alerts app. It delivers the promised functionality, but also acts as spyware in the background.
The backdoor exploits a pair of zero-day flaws in IOS XE software. Now it’s been modified by the threat actor to escape visibility via previous fingerprinting methods.
Wall Street analysts say the recent breach of Okta’s support case management system could damage the company’s business. The breach follows a 2022 incident in which hacker group Lapsus$ obtained Okta customer data via a third-party provider.
The company says proof-of-concept (PoC) exploit code is now available for an authentication bypass flaw in vRealize Log Insight (aka VMware Aria Operations for Logs). The exploit code lets unauthenticated attackers execute code remotely with root permissions when certain conditions are met.