The Secret Weakness Execs Are Overlooking: Non-Human Identities – OfficialSarkar

The Secret Weakness Execs Are Overlooking: Non-Human Identities – OfficialSarkar

For years, securing a company’s systems was synonymous with securing its “perimeter.” There was what was safe “inside” and the unsafe outside world. We built sturdy firewalls and deployed sophisticated detection systems, confident that keeping the barbarians outside the walls kept our data and systems safe. The problem is that we no longer operate within…

New Perfctl Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking – OfficialSarkar

New Perfctl Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking – OfficialSarkar

Oct 03, 2024Ravie LakshmananLinux / Malware Linux servers are the target of an ongoing campaign that delivers a stealthy malware dubbed perfctl with the primary aim of running a cryptocurrency miner and proxyjacking software. “Perfctl is particularly elusive and persistent, employing several sophisticated techniques,” Aqua security researchers Assaf Morag and Idan Revivo said in a…

MP ESB Nursing Admissions Sarkari Result Online Form 2024 [Career]

MP ESB Nursing Admissions Sarkari Result Online Form 2024 [Career]

Madhya Pradesh Staff Selection Board (MPESB) has released the B.Sc. Official notification has been published for. Nursing (PBBSc Nursing) and Master of Science Nursing (MSc Nursing) on ​​the official website of MPESB. For all the interested and eligible candidates who want to apply for this form, all the information related to the form is given…

North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks – OfficialSarkar

North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks – OfficialSarkar

Oct 03, 2024Ravie LakshmananCyber Espionage / Threat Intelligence Threat actors with ties to North Korea have been observed delivering a previously undocumented backdoor and remote access trojan (RAT) called VeilShell as part of a campaign targeting Cambodia and likely other Southeast Asian countries. The activity, dubbed SHROUDED#SLEEP by Securonix, is believed to be the handiwork…

INTERPOL Arrests 8 in Major Phishing and Romance Fraud Crackdown in West Africa – OfficialSarkar

INTERPOL Arrests 8 in Major Phishing and Romance Fraud Crackdown in West Africa – OfficialSarkar

Oct 03, 2024Ravie LakshmananCybercrime / Financial Fraud INTERPOL has announced the arrest of eight individuals in Côte d’Ivoire and Nigeria as part of a crackdown on phishing scams and romance cyber fraud. Dubbed Operation Contender 2.0, the initiative is designed to tackle cyber-enabled crimes in West Africa, the agency said. One such threat involved a…

LockBit Ransomware and Evil Corp Leaders Arrested and Sanctioned in Joint Global Effort – OfficialSarkar

LockBit Ransomware and Evil Corp Leaders Arrested and Sanctioned in Joint Global Effort – OfficialSarkar

Oct 03, 2024Ravie LakshmananCybercrime / Ransomware A new wave of international law enforcement actions has led to four arrests and the takedown of nine servers linked to the LockBit (aka Bitwise Spider) ransomware operation, marking the latest salvo against what was once a prolific financially motivated group. This includes the arrest of a suspected LockBit…

Ivanti Endpoint Manager Flaw Actively Targeted, CISA Warns Agencies to Patch – OfficialSarkar

Ivanti Endpoint Manager Flaw Actively Targeted, CISA Warns Agencies to Patch – OfficialSarkar

Oct 03, 2024Ravie LakshmananVulnerability / Endpoint Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a security flaw impacting Endpoint Manager (EPM) that the company patched in May to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerability, tracked as CVE-2024-29824, carries a CVSS score of 9.6…

Fake Trading Apps Target Victims Globally via Apple App Store and Google Play – OfficialSarkar

Fake Trading Apps Target Victims Globally via Apple App Store and Google Play – OfficialSarkar

A large-scale fraud campaign leveraged fake trading apps published on the Apple App Store and Google Play Store, as well as phishing sites, to defraud victims, per findings from Group-IB. The campaign is part of a consumer investment fraud scheme that’s also widely known as pig butchering, in which prospective victims are lured into making…

Fake Job Applications Deliver Dangerous More_eggs Malware to HR Professionals – OfficialSarkar

Fake Job Applications Deliver Dangerous More_eggs Malware to HR Professionals – OfficialSarkar

Oct 02, 2024Ravie LakshmananCybercrime / Threat Intelligence A spear-phishing email campaign has been observed targeting recruiters with a JavaScript backdoor called More_eggs, indicating persistent efforts to single out the sector under the guise of fake job applicant lures. “A sophisticated spear-phishing lure tricked a recruitment officer into downloading and executing a malicious file disguised as…

China-Linked CeranaKeeper Targeting Southeast Asia with Data Exfiltration – OfficialSarkar

China-Linked CeranaKeeper Targeting Southeast Asia with Data Exfiltration – OfficialSarkar

Oct 02, 2024Ravie LakshmananCyber Espionage / Cloud Security A previously undocumented threat actor called CeranaKeeper has been linked to a string of data exfiltration attacks targeting Southeast Asia. Slovak cybersecurity firm ESET, which observed campaigns targeting governmental institutions in Thailand starting in 2023, attributed the activity cluster as aligned to China, leveraging tools previously identified…