Cyber News & Updates
Breaking news, security alerts, and trending stories from across the cybersecurity landscape.
-
New Android Trojans BankBot-YNRK and DeliveryRAT Target Financial Data
Cybersecurity researchers have identified BankBot-YNRK and DeliveryRAT, two sophisticated Android trojans actively exfiltrating sensitive financial data and cryptocurrency assets. These threats employ advanced evasion techniques and malware-as-a-service models, with a related trend of NFC misuse for payment data theft.
-
Conti Ransomware Suspect Extradited to US, Faces Charges
Oleksii Oleksiyovych Lytvynenko, a Ukrainian national, has been extradited from Ireland to the United States to face charges of conspiracy related to the deployment of the Conti ransomware. This marks a significant international effort against cybercrime.
-
Australian Signals Directorate Warns of Ongoing BADCANDY Cyberattacks on Cisco IOS XE Devices
The Australian Signals Directorate (ASD) has issued a bulletin regarding ongoing cyberattacks targeting unpatched Cisco IOS XE devices in Australia, utilizing a previously undocumented implant identified as BADCANDY. These attacks exploit CVE-2023-20198, a critical vulnerability that allows remote, unauthenticated attackers to gain elevated privileges.
-
Ukrainian Intelligence Reports Systemic Economic Decline in Russia
Ukrainian intelligence reports indicate a systemic economic decline in Russia, marked by significant reductions in corporate profits, increasing financial instability, and widespread inability to generate profit across key sectors like coal, services, metallurgy, and energy.
-
US Agencies Propose Ban on TP-Link Networking Devices Over Security Concerns
The US government is reportedly considering a ban on TP-Link networking devices due to national security concerns, following an investigation by federal agencies. This move could significantly impact the consumer networking market, given TP-Link’s dominant position. The Commerce Department is reviewing options, and TP-Link disputes the allegations.
-
Microsoft Tests Shared Bluetooth Audio for Windows 11, Restricted to ‘AI PCs’
Microsoft is currently testing a new “shared Bluetooth audio” feature within Windows 11, designed exclusively for a new category of devices designated as “AI PCs.” This development, observed in Windows 11 Insider Preview Build 26058, introduces capabilities for simultaneous audio streaming to multiple nearby devices. The integration of this feature with emerging hardware classifications warrants…
-
Brash Exploit Uncovers Critical Chromium Blink Vulnerability
A newly discovered exploit, dubbed ‘Brash,’ has revealed a critical architectural vulnerability within the Chromium Blink rendering engine, capable of causing a system-level denial of service across a wide range of Chromium-based browsers globally. This flaw, not a traditional memory corruption bug, exploits a fundamental design oversight in how web browsers manage tab titles.
-
Australian Clinical Labs Fined A$5.8 Million for Medlab Pathology Data Breach
Australian Clinical Labs (ACL) has been ordered to pay a A$5.8 million civil penalty for a data breach at its subsidiary, Medlab Pathology, marking a first under Australia’s Privacy Act.
-
CISA Confirms Linux Kernel Flaw Exploited in Ransomware Attacks
CISA confirms active exploitation of CVE-2024-1086, a Linux kernel privilege escalation flaw, in ransomware attacks, urging federal agencies to patch immediately.
-
Google Explores Deeper Personal Data Integration for AI Search Mode
Google is reportedly developing capabilities for its AI Mode in Search to access personal user data from services such as Gmail and Google Drive, offering an opt-in for enhanced personalization.