Cyberattacks are becoming more daring and multifaceted, targeting everything from global institutions to individual wallets. Russia-aligned TAG-110 is waging a cyber-espionage campaign against Central Asia, East Asia, and Europe, using HATVIBE and CHERRYSPY malware to infiltrate governments, NGOs, and educational organizations. A fake NFT game app managed to bypass Microsoft Defender and Google’s 2FA, stealing over $24,000 in cryptocurrency. SafetyDetectives linked this malicious campaign to vulnerabilities in common authentication systems. Meanwhile, a VulnCheck report exposed 15 of the most exploited vulnerabilities in products like Apache and Cisco, with 400,000 systems at risk due to publicly available proof-of-concept exploits. Read on for more.
01
Russia-aligned TAG-110 is conducting cyber-espionage against Central Asia, East Asia, and Europe using custom malware HATVIBE and CHERRYSPY. Targets include governments, human rights groups, and educational institutions.
02
SafetyDetectives discovered that a malware-laced fake NFT game app was able to bypass Microsoft Defender and Google's 2FA, stealing over $24,000 in cryptocurrency.
03
The Trellix Advanced Research Center uncovered a BYOVD campaign that exploits the Avast Anti-Rootkit driver to bypass defenses, terminate security processes, and take control of systems.
04
Thousands of Palo Alto Networks firewalls, including 2,000 globally, were compromised via PAN-OS vulnerabilities (CVE-2024-0012 and CVE-2024-9474) that bypass authentication and grant admin privileges.
05
A VulnCheck report identified 15 top exploited vulnerabilities in products like Apache, Cisco, and Microsoft, with 400,000 systems exposed to attacks due to public proof-of-concept exploits.
06
NVIDIA's Base Command Manager software has a critical security vulnerability (CVE-2024-0138) that could lead to code execution, privilege escalation, and data tampering.
07
The DOJ seized PopeyeTools, an illicit online marketplace selling stolen credit cards and tools for cybercrime, and charged three individuals with conspiracy and trafficking offenses.
08
Microsoft has disrupted the ONNX phishing service and publicly named the alleged operator, Abanoub Nady, in an effort to deter other threat actors.
09
Generative AI security startup Prompt Security raised $18 million in Series A funding led by Jump Capital, with participation from Hetz Ventures, Ridge Ventures, Okta, and F5.
10
VISO TRUST, a leader in AI-powered third-party risk management, closed a $7 million funding round, bringing the total to $24 million. Participants included Bain Capital Ventures, Work-Bench, and others.
