Liverpool Fans Take English Premier League Title for Ticket Scams
Ticket scams are costing football fans close to £200 a season, on average, according to a report.
Constantly Evolving MoonPeak RAT Linked to North Korean Spying
The malware is a customized variant of the powerful open source XenoRAT information stealing malware often deployed by Kimsuky and other DPRK APTs.
Patch Now: Second SolarWinds Critical Bug in Web Help Desk
The disclosure of CVE-2024-28987 means that, in two weeks, there have been two critical bugs and corresponding patches for SolarWinds’ less-often-discussed IT help desk software.
NIST Hands Off Post-Quantum Cryptography Work to Cyber Teams
The release of new NIST quantum-proof cryptography standards signals it’s time for cybersecurity teams to get serious about preparing for the rise of quantum threats.
Infostealers Waltz Through macOS to Grab Crypto Wallets, Browser Creds
Ironically, Macs’ lower risk profile may make them more susceptible to any given threat than the average Windows or Linux system.
Taiwan University Under Fire From Unique DLL Backdoor
It’s unclear who the "Msupedge" threat actors were or what the motive for the attack was.
Media & Victims Find Common Ground Against Hackers
In a panel at Black Hat 2024, journalists and investigators explain their differing goals when a victim organization is breached.
CCTV Zero-Day Exposes Critical Infrastructure to Mirai Botnet
CISA warned about the RCE zero-day vulnerability in AVTECH IP cameras in early August, and now vulnerable systems are being used to spread malware.
PoC Exploit for Zero-Click Vulnerability Made Available to the Masses
The exploit can be accessed on GitHub and makes it easier for the flaw to be exploited by threat actors.
Attackers Exploit Critical Atlassian Confluence Flaw for Cryptojacking
Novel attack vectors leverage the CVE-2023-22527 RCE flaw discovered in January, which is still under active attack, to turn targeted cloud environments into cryptomining networks.

