OilRig Exploits Windows Kernel Flaw in Espionage Campaign Targeting UAE and Gulf – OfficialSarkar

OilRig Exploits Windows Kernel Flaw in Espionage Campaign Targeting UAE and Gulf – OfficialSarkar

Oct 13, 2024Ravie Lakshmanan The Iranian threat actor known as OilRig has been observed exploiting a now-patched privilege escalation flaw impacting the Windows Kernel as part of a cyber espionage campaign targeting the U.A.E. and the broader Gulf region. “The group utilizes sophisticated tactics that include deploying a backdoor that leverages Microsoft Exchange servers for…

PM Internship Online Form 2024, Registration, Eligibility Criteria [Career]

PM Internship Online Form 2024, Registration, Eligibility Criteria [Career]

Ministry of Corporate Affairs (MCA) has released the notification for Pradhan Mantri PM Internship Scheme 2024 and online applications has started from 12th October 2024. For all the interested and eligible candidates who want to apply for this scheme, all the information related to the scheme is given below and the link to apply is…

FBI Creates Fake Cryptocurrency to Expose Widespread Crypto Market Manipulation – OfficialSarkar

FBI Creates Fake Cryptocurrency to Expose Widespread Crypto Market Manipulation – OfficialSarkar

Oct 12, 2024Ravie LakshmananCryptocurrency / Cybercrime The U.S. Department of Justice (DoJ) has announced arrests and charges against several individuals and entities in connection with allegedly manipulating digital asset markets as part of a widespread fraud operation. The law enforcement action – codenamed Operation Token Mirrors – is the result of the U.S. Federal Bureau…

GitHub, Telegram Bots, and QR Codes Abused in New Wave of Phishing Attacks – OfficialSarkar

GitHub, Telegram Bots, and QR Codes Abused in New Wave of Phishing Attacks – OfficialSarkar

A new tax-themed malware campaign targeting insurance and finance sectors has been observed leveraging GitHub links in phishing email messages as a way to bypass security measures and deliver Remcos RAT, indicating that the method is gaining traction among threat actors. “In this campaign, legitimate repositories such as the open-source tax filing software, UsTaxes, HMRC,…

How Hybrid Password Attacks Work and How to Defend Against Them – OfficialSarkar

How Hybrid Password Attacks Work and How to Defend Against Them – OfficialSarkar

Threat actors constantly change tactics to bypass cybersecurity measures, developing innovative methods to steal user credentials. Hybrid password attacks merge multiple cracking techniques to amplify their effectiveness. These combined approaches exploit the strengths of various methods, accelerating the password-cracking process. In this post, we’ll explore hybrid attacks — what they are and the most common…

MPSC Group B, C Sarkari Result Online Form 2024 [Career]

MPSC Group B, C Sarkari Result Online Form 2024 [Career]

Maharashtra Public Service Commission (MPSC) has released the notification for the recruitment of various Group B and C posts for a total of 1813 posts on its official website. All interested and eligible candidates who want to apply for this recruitment can read all the information related to the recruitment given below and the link…

CISA Warns of Threat Actors Exploiting F5 BIG-IP Cookies for Network Reconnaissance – OfficialSarkar

CISA Warns of Threat Actors Exploiting F5 BIG-IP Cookies for Network Reconnaissance – OfficialSarkar

Oct 11, 2024Ravie LakshmananVulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that it has observed threat actors leveraging unencrypted persistent cookies managed by the F5 BIG-IP Local Traffic Manager (LTM) module to conduct reconnaissance of target networks. It said the module is being used to enumerate other non-internet-facing devices…

New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution – OfficialSarkar

New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution – OfficialSarkar

Oct 11, 2024Ravie LakshmananDevOps / Vulnerability GitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE) to address eight security flaws, including a critical bug that could allow running Continuous Integration and Continuous Delivery (CI/CD) pipelines on arbitrary branches. Tracked as CVE-2024-9164, the vulnerability carries a CVSS score of 9.6 out of…

Bohemia and Cannabia Dark Web Markets Taken Down After Joint Police Operation – OfficialSarkar

Bohemia and Cannabia Dark Web Markets Taken Down After Joint Police Operation – OfficialSarkar

Oct 11, 2024Ravie LakshmananCybercrime / Dark Web The Dutch police have announced the takedown of Bohemia and Cannabia, which has been described as the world’s largest and longest-running dark web market for illegal goods, drugs, and cybercrime services. The takedown is the result of a collaborative investigation with Ireland, the United Kingdom, and the United…

OpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and Disinformation – OfficialSarkar

OpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and Disinformation – OfficialSarkar

Oct 10, 2024Ravie LakshmananCybercrime / Disinformation OpenAI on Wednesday said it has disrupted more than 20 operations and deceptive networks across the world that attempted to use its platform for malicious purposes since the start of the year. This activity encompassed debugging malware, writing articles for websites, generating biographies for social media accounts, and creating…