The infamous threat actor known as Winter Vivern has recently come into the spotlight after exploiting a zero-day flaw in the popular Roundcube webmail software. On October 11, 2023, security researchers observed Winter Vivern leveraging this vulnerability, demonstrating their advanced capabilities in cyber warfare. Winter Vivern’s increased operations Winter Vivern has significantly escalated its operations by capitalizing on a zero-day
In the fast-paced world of cryptocurrencies, the rise of digital assets has attracted both legitimate investors and nefarious actors seeking to exploit the system. The increasing amount of lost or stolen funds in the cryptocurrency industry is a cause for concern, with over $990 million reported in losses or thefts in 2023 alone, according to Cointelegraph’s Crypto Hacks database. This
SolarWinds, a leading provider of IT management software, has recently addressed eight high-severity vulnerabilities in its Access Rights Manager (ARM). Notably, this release includes patches for three remote code execution (RCE) flaws that can be exploited without authentication. These vulnerabilities were identified by Sina Kheirkhah of the Summoning Team and reported to ZDI, a leading vulnerability research organization. Identification and
The insidious Brazilian banking malware, “Grandoreiro,” has now transcended borders, with a recent campaign by the threat group TA2725 targeting customers in Spain, Brazil, and Mexico. Dark web activity in Latin America has seen a significant surge over the past two years, with a staggering 360 billion attempted cyberattacks recorded in the region in 2022 alone. In this article, we
The increasing number of ransomware attacks has become a significant concern in the cyber world. This article explores the growing trend of Ransomware-as-a-Service (RaaS) and focuses on GhostLocker, a newly launched RaaS platform by hacktivist groups. We delve into the lucrative nature of ransomware, the features and capabilities of GhostLocker, its accessibility, and the need for robust cybersecurity measures in
In the ever-evolving landscape of cyber threats, a new technique known as ClearFake has emerged. This malicious tactic involves the distribution of harmful codes through compromised websites, specifically targeting vulnerable WordPress sites. By displaying fake browser update overlays, threat actors aim to deceive unsuspecting users into downloading malicious files and executables. The implications of ClearFake are far-reaching, emphasizing the need
Over the past decade, wealth management platforms have undergone significant transformations to meet the increasing demand for more personalized services. The emergence of hybrid models, combining digital tools and online advice from human managers, has revolutionized the industry. This article explores how these platforms have evolved, offering clients the convenience of performing banking transactions, managing their wealth, and investing in
Woodforest National Bank, a steadfast community bank with a strong customer service record, has recently formed a strategic partnership with Marstone, Inc., a digital investment and planning platform. This collaboration aims to expand Woodforest’s digital channels and offer a wider range of wealth management services to its loyal customer base. By leveraging Marstone’s expertise and trusted platform, Woodforest aims to
Hong Kong’s Securities and Futures Commission (SFC) has announced plans to update its framework on cryptocurrency sales and requirements amid the evolving market development of the digital asset industry. As the popularity and usage of virtual assets (VAs), such as cryptocurrencies, continue to grow, so do the associated risks. The SFC recognizes the importance of investor protection in this rapidly
Plastic surgery practices and their patients are being targeted by cybercriminals, according to a warning issued by the FBI. These criminals aim to exploit sensitive health information and medical photos for extortion purposes. By obtaining this data, they demand ransom payments from practices and patients to prevent public disclosure or sharing with acquaintances. Increase in Hacking Incidents In recent months,
Flanks, a Barcelona-based wealth management platform, has successfully secured $8 million in a Series A funding round led by Earlybird Venture Capital. This significant investment will propel Flanks towards further innovation in the wealth management industry, enabling enhanced client-advisor interactions and streamlined investment decision-making processes. Flanks’ single API for aggregated wealth data Flanks offers a pioneering solution – a single
Reddit, the popular social news aggregation and discussion platform, has announced its decision to permanently shutter its long-running blockchain-based rewards service, “Community Points.” Despite its initial intentions of promoting positive engagement and incentivizing high-quality content, the platform cited scalability concerns as the key driver behind this unfortunate move. Shutting down of community points Starting November 8, 2021, Reddit will begin
