Cybercriminals are amplifying their attacks with increasingly sophisticated tactics. A threat actor named Matrix is driving a disruptive DDoS campaign, leveraging misconfigured IoT devices to build a formidable botnet. Deceptive apps are preying on millions of Android users. McAfee uncovered 15 SpyLoan apps, collectively downloaded over eight million times, targeting users globally via social media platforms. Unpatched VPN clients are now a gateway for attackers. The NachoVPN vulnerabilities enable malicious servers to exploit Palo Alto and SonicWall SSL-VPN clients, leading to potential credential theft and remote code execution. Read on for more.
01
A threat actor named Matrix is behind a wide-ranging DDoS campaign that exploits vulnerabilities and misconfigurations in IoT devices to form a disruptive botnet.
02
McAfee identified 15 SpyLoan apps on Android, with over eight million installs. These apps target users in South America, Southern Asia, and Africa via social media.
03
ESET uncovered a zero-day flaw (CVE-2024-9680) in Mozilla products exploited by RomCom, alongside a Windows bug (CVE-2024-49039). Together, these exploits delivered backdoors targeting government, pharmaceutical, legal, and insurance sectors.
04
A malicious JavaScript injection has been targeting Magento checkout pages to steal sensitive payment data through fake forms or by extracting live input fields.
05
A set of bugs (CVE-2024-5921 and CVE-2024-29014), dubbed NachoVPN, enables malicious VPN servers to exploit unpatched Palo Alto and SonicWall SSL-VPN clients, potentially leading to credential theft and code execution.
06
ESET researchers identified Bootkitty, the first UEFI bootkit targeting Linux systems. Unlike prior Windows-focused threats, Bootkitty disables kernel signature verification and loads unsigned modules.
07
Two critical vulnerabilities (CVE-2024-10542 and CVE-2024-10781) in the Anti-Spam by CleanTalk WordPress plugin, impacting over 200,000 active installations, could allow unauthenticated attackers to compromise websites.
08
Operation Serengeti, led by Afripol and Interpol, arrested 1,006 cybercriminals. Targeting ransomware, scams, and extortion, it dismantled 134,089 malicious networks and recovered $44 million in stolen funds.
09
Cybercriminals are phishing OpenSea users with fake NFT sale offers, mimicking the platform to trick victims into connecting crypto wallets to malicious pages, ultimately draining funds.
10
Cybersecurity company Halcyon raised $100 million in a Series C funding round led by Evolution Equity Partners, with participation from Bain Capital Ventures, SYN Ventures, and others.
