CVE-2021-1078
NVIDIA Windows GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel driver (nvlddmkm.sys) where a NULL pointer dereference may lead to system crash.
VU#213092
Overview. Pulse Connect Secure (PCS) gateway contains a vulnerability that can allow an unauthenticated remote attacker to execute arbitrary code. Description. CVE-2021-22893. An unspecified vulnerability exposed by the Windows File Share Browser and Pulse Secure Collaboration features of Pulse….
Lazarus Group Hid RATs in BMP Images
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Fraud Risk Management Group Used Fresh Tactic to Target South Korea Doug Olenick (DougOlenick) • April 21, 2021 The form Lazarus uses to lure in its victims (Source: Malwarebytes) Malwarebytes researchers report the North Korean advanced persistent threat group Lazarus rolled out a…
Chauvin: Will verdict lead to fundamental change?
A federal investigation into policing practices in the city of Minneapolis has been launched, a day after one of its former officers, Derek Chauvin, was convicted of the murder of George Floyd. Speaking before the investigation was announced Dr Rashawn Ray, a professor of sociology told BBC World News that he was not sure whether…
Hackers stole driver’s license numbers from Geico’s website
Geico has filed a data breach notice with the California attorney general’s office, admitting that fraudsters had stolen customers’ driver’s license numbers from its website. In the notice, discovered by TechCrunch, the American auto insurance titan said that from January 21st to March 1st this year, bad actors infiltrated its website using information on its…
Kasparov: West must not ignore Navalny
Long-time democracy campaigner and Russian chess grandmaster Garry Kasparov has said he is very concerned for the health of Alexei Navalny who is three weeks into a prison hunger strike. He told BBC World News: “We understand that the West cannot save Navalny, but it can seal his fate by simply ignoring him.” It was…
Cyber-security experts warn of Facebook Messenger ‘upgrade’ scam, Courts & Crime News & Top Stories
SINGAPORE – Scammers are targeting Singaporeans by promoting an allegedly upgraded version of Facebook Messenger that redirects victims to scam sites that steal their data. And it appears they were promoting the scam with ads on Facebook itself. International cyber-security company Group-IB has flagged the scam campaign, which involves about 1,000 fake Facebook profiles targeting…
Live Webinar | Are you SASE Ready? 5 Steps for Building Your SASE RoadmapWebinar.
Cloud Access Security Brokers (CASB) , Cloud Security , Network Detection & Response Presented by iboss 60 minutes Secured Access Service Edge, or SASE, is no longer a buzzword tossed around by cybersecurity pundits but is a robust, cloud-based service model to enable secure anywhere, anytime access from any device. …
Lazarus APT has found a clever way to conceal its malicious code
Lazarus APT, a North Korean threat actor known for its sophisticated attacks, has been observed using a clever method to bypass security mechanisms by hiding its malicious code within a bitmap (.BMP) image file used to drop a remote access trojan (RAT) capable of stealing sensitive information. According to researchers at Malwarebytes Labs,…
Lazarus APT Hackers are now using BMP images to hide RAT malware – KK Hack Labs
A spear-phishing attack operated by a North Korean threat actor targeting its southern counterpart has been found to conceal its malicious code within a bitmap (.BMP) image file to drop a remote access trojan (RAT) capable of stealing sensitive information.Attributing the attack to the Lazarus Group based on similarities to prior tactics adopted by the adversary, researchers…