acm.org

HexStrike Exploit Raises Cyber Stakes

Cyberattacks once moved at the pace of human hackers. Even with scripts, the manual effort that malicious actors needed to navigate networks constrained their attacks. Today, threat actors use agentic ...
Security Boulevard

New TCLBanker Malware Self-Spreads Over WhatsApp and Outlook

Elastic Security Labs has documented a new Brazilian banking trojan called TCLBanker, tracked under campaign REF3076, that combines credential theft targeting 59 banking, fintech, and cryptocurrency ...
The Hacker News

Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains

Chinese-speaking users are the target of an active campaign that uses typosquatted domains impersonating trusted software brands to deliver a previously undocumented remote access trojan named ...
The Hacker News

Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels

Cybersecurity researchers have discovered a remote access toolkit of Russian-origin that's distributed via malicious Windows shortcut (LNK) files that are disguised as private key folders. The CTRL ...
Security Boulevard

Security Vulnerabilities in SAML, OAuth 2.0, OpenID Connect, and JWT

Modern SSO protocols allow users to authenticate with one identity provider and gain access to multiple services. The most common standards are: Despite their widespread adoption, each of these has ...
CSOonline

RDP hijacking attacks explained, and how to mitigate them

One means of compromising systems cherished by malware authors is Remote Desktop Protocol (RDP). It provides a convenient way for system administrators to manage Windows systems and help users with ...