Cleo File Transfer Vulnerabilities Exploited by Cl0p Ransomware
Recent cybersecurity incidents have exposed critical vulnerabilities in Cleo's file transfer software – Cleo Harmony, VLTrader, and LexiCom – which are actively being exploited. These flaws, specifically CVE-2024-50623 and CVE-2024-55956,…
Brad Garlinghouse Crypto Giveaway Scam Explained
Brad Garlinghouse Crypto Giveaway is a scam campaign that masquerades as a cryptocurrency giveaway. It falsely claimed to be organized by Ripple Foundation with Brad Garlinghouse, Ripple's CEO, as the…
Shougnoboassi.net Redirect Virus
Shougnoboassi.net is a website that you may notice appearing in your web browser. It shows a human verification button, and upon interaction redirects the user to a questionable website. In…
Aiocpa PyPI Package Targets Crypto Wallets
A malicious package named aiocpa was identified on the Python Package Index (PyPI), engineered to steal sensitive cryptocurrency wallet information. Unlike the previous attacks that leveraged PyPI, that generally relied…
Top 3 MMS Scams: What Threats Can Messages Bring
MMS is a rather old technology that is being pushed out of the market by proper messenger applications. Nonetheless, fraudsters seem to be interested in abusing it for their profit:…
Ivanti Fixes Authentication Bypass Vulnerability, Patch Now
Ivanti has alerted its customers to a critical authentication bypass vulnerability in its Cloud Services Appliance (CSA) solution. This security flaw allows remote attackers to gain administrative privileges without needing…
Top 4 Signal Scams to be Aware About
Anonymous messaging app Signal becomes increasingly popular amongst regular users. Such a shift turned the attention of various cybercriminals to the app that was clean of scams beforehand. Due to…
NodePay Claims Scam
“NodePay Claims” is a selection of websites that impersonate NodePay, a legit AI training platform. These sites offer sharing their computers’ power to facilitate the training process of AI models…
Veeam’s Critical RCE Vulnerability Patch for Service Provider Console
Veeam has released security updates to address a critical flaw, CVE-2024-42448, with a CVSS score of 9.9. This flaw impacts the Service Provider Console (VSPC) and could pave the way…
SpyLoan Virus Found in Loan Apps on Google Play Store
Experts reported the discovery of a new set of 15 malicious mobile apps in the Google Play store that contain the SpyLoan Android malware inside. In total, these apps have…
INTERPOL Reports Finishing Huge Anti-Financial Crime Operation
A recent international law enforcement initiative has resulted in the arrest of over 5,500 individuals linked to financial crimes. This operation has also successfully seized over $400 million in virtual…
Wazawaka Hacker Arrested in Kaliningrad, Russia
Russian authorities have arrested the infamous hacker Mikhail Pavlovich Matveev, widely known by his alias, Wazawaka. His involvement allegedly helped three ransomware gangs extort over $200 million in ransom payments.…
