Aggregator

A sophisticated spear-phishing campaign attributed to the Iranian-linked APT group MuddyWater is actively compromising CFOs and finance executives across Europe, North America, South America, Africa, and Asia. The attackers impersonate recruiters from Rothschild & Co, deploying Firebase-hosted phishing pages that incorporate custom math-based CAPTCHA challenges to evade detection and lend legitimacy. These lures lead victims […]

The post MuddyWater APT Targets CFOs via OpenSSH; Enables RDP and Scheduled Tasks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cyber spies associated with the threat actor group Paper Werewolf have demonstrated advanced capabilities in bypassing email security filters by delivering malware through seemingly legitimate archive files, a tactic that exploits the commonality of such attachments in business correspondence. Despite their sophistication, these attackers continue to rely on detectable tactics, techniques, and procedures (TTPs), underscoring […]

The post Paper Werewolf Exploits WinRAR Zero-Day Vulnerability to Deliver Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A stealthy campaign emerged in early March 2025 that capitalized on a critical remote code execution flaw in GeoServer (CVE-2024-36401) to compromise publicly exposed geospatial servers. Attackers exploited JXPath query injection within Apache Commons libraries, allowing arbitrary code execution through crafted XML requests. This vector enabled the silent deployment of customized executables that leveraged legitimate […]

The post Threat Actors Gaining Access to Victims’ Machines and Monetizing Access to Their Bandwidth appeared first on Cyber Security News.

You must login to view this content

You must login to view this content

Healthcare has more data than it knows what to do with. Petabytes of patient records, clinical notes, lab results, and wearable feeds pile up daily....Read More

The post The Future Is Predictive: Top 7 AI Tools Shaping Healthcare Analytics in 2025 appeared first on ISHIR | Software Development India.

The post The Future Is Predictive: Top 7 AI Tools Shaping Healthcare Analytics in 2025 appeared first on Security Boulevard.

Cybersecurity researchers have observed a surge in phishing campaigns leveraging QR codes to deliver malicious payloads. This emerging threat, often dubbed “quishing,” exploits the opaque nature of QR codes to conceal harmful URLs that redirect victims to credential-harvesting sites or malware downloads. Unlike traditional phishing links that can be flagged by email gateways, QR codes […]

The post Hackers Weaponize QR Codes Embedded with Malicious Links to Steal Sensitive Information appeared first on Cyber Security News.

You must login to view this content

You must login to view this content

A threat group linked to the Russian Federal Security Service’s (FSB) Center 16 unit has been compromising unpatched and end-of-life Cisco networking devices via an old vulnerability (CVE-2018-0171), the FBI and Cisco warned on Wednesday. “Primary targets include organizations in telecommunications, higher education and manufacturing sectors across North America, Asia, Africa and Europe, with victims selected based on their strategic interest to the Russian government,” Cisco Talos researchers noted. “In the past year, the FBI … More →

The post Russian threat actors using old Cisco bug to target critical infrastructure orgs appeared first on Help Net Security.