EHA
Home Cyber Security News

Cyber Security News

New Instagram Phishing Attack Steals 2FA backup Codes

New Instagram Phishing Attack Steals 2FA Backup Codes

A new phishing campaign targeting Instagram users has been discovered, which uses several different techniques to lure victims into phishing websites and steal Instagram's two-factor backup codes. The threat actors use the “Copyright Infringement” template...
Google Removed 164 Apps

Google Removed 164 Apps Downloaded a Total of 10 Million Times From Google Play

Google has recently removed 164 Apps from Google Play since they were showing disruptive ads, which is considered as malicious. These apps have downloaded a total of 10 million times. The Satori Research Team found...
Japan Video-Sharing Website Suspensed Services Following Cyber Attack

Japan Video-Sharing Website Suspensed Services Following Cyber Attack

The popular Japanese video-sharing website Niconico has suspended its services due to a large-scale cyberattack. Niconico is one of Japan's most extensive video-sharing services. Users share various videos, from music and sports to multiple hobbies....
FBI, CISA warns Of ALPHV Blackcat Ransomware Attacking Hospitals

FBI, CISA warns Of ALPHV Blackcat Ransomware Attacking Hospitals

The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Health and Human Services (HHS) have issued a joint advisory warning about the ALPHV Blackcat ransomware. This...
Romanian Hackers Actively Attacking Linux-based Machines With Weak SSH Credentials

Romanian Hackers Actively Attacking Linux-based Machines With Weak SSH Credentials

Researchers uncovered a new active crypto-jacking attack from the APT threat group targeting Linux-based machines by taking advantage of the weak SSH credentials to deploy the crypto-malware to mine Monero cryptocurrency. To mine cryptocurrency, attackers...
Over 19 Million Password Logs Sold on the Dark Web and Telegram

Over 19 Million Password Logs Sold on the Dark Web and Telegram

The rapid increase of info stealers has emerged as a major risk for organizations, including chatGPT, and has led to a rise in cybercrime in the last three years. These info stealers are sold on...
Android Security Updates: Over 40 Vulnerabilities Including Critical RCE Patched

Android Security Updates: Over 40 Vulnerabilities Including Critical RCE Patched

Android has released its August Security patches in which more than 40 vulnerabilities have been identified and fixed. Most of the vulnerabilities were related to remote code execution (RCE), Elevation of Privileges (EoP), and...
Critical ASUS Router Flaw Attacker Executes Arbitrary Commands

Critical ASUS Router Flaw Attacker Executes Arbitrary Commands

A critical vulnerability has been discovered in several models of ASUS routers. It allows unauthenticated remote attackers to execute arbitrary system commands on the affected devices. The flaw, identified as CVE-2024-3912, has been assigned a...
Microsoft Azure Vulnerability Let Attackers Bypass Firewall Rules

Microsoft Azure Vulnerability Let Attackers Bypass Firewall Rules

Tenable Research has uncovered a significant vulnerability in Microsoft Azure that allows malicious attackers to bypass firewall rules by forging requests from trusted services. This vulnerability affects several Azure services, including: Azure Application Insights Azure DevOps Azure Machine...
Cisco Duo for Windows Logon and RDP Let Attacker Bypass Authentication

Cisco Duo for Windows Logon and RDP Let Attacker Bypass Authentication

A critical vulnerability, CVE-2024-20301 has been identified in Cisco Duo Authentication for Windows Logon and Remote Desktop Protocol (RDP), posing a security risk to affected systems. This flaw could allow an authenticated, local attacker...

Managed WAF

Website

Latest News