VajraSpy Android RAT Campaign Uncovered
Incident Overview: A sophisticated Android Remote Access Trojan (RAT), named VajraSpy, has been identified within 12 applications, half of which were distributed through the official…
Category: Threat Intelligence Alerts
Latest threats and guidance from the cyber and fraud world
Mastodon Users Beware: Critical Vulnerability Allows Account Takeovers
A recently discovered vulnerability in the Mastodon social media platform could allow attackers to take over user accounts. The vulnerability, which has been assigned a…
Trezor Email Provider Hack: What You Need to Know
Trezor, a popular cryptocurrency hardware wallet company, recently reported a breach in its third-party email provider. The incident exposed the email addresses of around 66,000…
Beware of the “I can’t believe he’s gone” Facebook Scam.
A new Facebook scam has been making the rounds, preying on users’ sympathy and care for others. The scam starts with a Facebook post that…
Critical Vulnerability Found in GoAnywhere Platform Puts User Data at Risk
GoAnywhere is a popular managed file transfer platform used by organisations to securely share files and data internally and with external partners. The software, created…
TeamViewer being used to breach networks in Ransomware attacks.
Ransomware attackers are once again using TeamViewer to get into the computer systems of organisations. They aim to gain initial access to endpoints and try…
Safeguard Your WordPress Site: The Balada Injector Threat and How to Stay Secure
In recent weeks, a significant cyber security threat has emerged, affecting over 7,000 WordPress sites worldwide. Named the “Balada Injector,” this malicious campaign has compromised…
Beware of Tax Return Scams This January
It’s that time of year again – self-assessment tax returns are due by 31st January. This can be a stressful time for the 12 million…
Ivanti Warns of Critical Zero-Day Exploits Actively Targeting Connect Secure VPN Devices
Ivanti has recently disclosed two high-severity zero-day vulnerabilities affecting its Connect Secure and Policy Secure gateway products that are reportedly being exploited. The Vulnerabilities: CVE-2023-46805…