Mind the (air) gap: GoldenJackal Targets Government Systems
New insights into GoldenJackal’s sophisticated toolsets, which have been used to carry out cyberespionage activities across Europe, South Asia, and the Middle East since 2019.
Edward Crowder
APT-C-00 OceanLotus Utilizes Advanced Dual Loader with VMP Protections
On September 23, 2024, the Advanced Threat Research Institute’s 360 Threat Intelligence Center released a detailed analysis on APT-C-00, also known as OceanLotus, a notorious advanced persistent threat (APT) group with suspected state backing.
Hacking Kia: Remotely Controlling Cars With Just a License Plate
On September 23, 2024, cybersecurity researcher Sammy released an alarming report detailing critical vulnerabilities in Kia vehicles that allowed attackers to remotely control key vehicle functions using only the vehicle’s license plate number.
Evil Corp: The Cybercrime Syndicate that Refuses to Die
On October 1, 2024, a detailed report shed new light on the notorious cybercrime group Evil Corp, revealing their continued operations despite global efforts to dismantle their network. Known for creating some of the most sophisticated malware strains.
Iranian Cyber Espionage Campaign Targets Swedish SMS Service in Data Breach
The attack targeted a Swedish company that manages a mass SMS service. According to a preliminary investigation led by the Swedish Security Police (Säkerhetspolisen), the breach was orchestrated by the Iranian Islamic Revolutionary Guard Corps (IRGC).
Political Deepfakes Exploit Global Elections: Emerging Tactics and Impacts
Insikt Group released a comprehensive threat analysis report, highlighting the increasing deployment of deepfakes targeting public figures across the globe. Over the past year, the group identified 82 deepfakes impersonating key figures, with a focus on elections.
Remote Code Execution Vulnerabilities Discovered in CUPS Affecting UNIX Systems
On September 26, 2024, a detailed disclosure outlined critical vulnerabilities in the Common UNIX Printing System (CUPS) that enable remote code execution (RCE) on UNIX systems, including various GNU/Linux distributions.