Google Rolls Out December Pixel Drop With These New Features

Google has rolled out the December Pixel Feature Drop update for compatible Pixel devices. Apart from including the latest security patch, the update introduces new ways of using Gemini — the company’s artificial intelligence (AI) large language model (LLM). The new features include getting more personalised responses, accessing more apps and services, and taking advantage of smarter […]

Continue Reading

More_eggs MaaS Expands Operations with RevC2 Backdoor and Venom Loader

Dec 06, 2024Ravie LakshmananMalware / Cybercrime The threat actors behind the More_eggs malware have been linked to two new malware families, indicating an expansion of its malware-as-a-service (MaaS) operation. This includes a novel information-stealing backdoor called RevC2 and a loader codenamed Venom Loader, both of which are deployed using VenomLNK, a staple tool that serves […]

Continue Reading

Hackers Leveraging Cloudflare Tunnels, DNS Fast-Flux to Hide GammaDrop Malware

Dec 06, 2024The Hacker NewsMalware / Threat Intelligence The threat actor known as Gamaredon has been observed leveraging Cloudflare Tunnels as a tactic to conceal its staging infrastructure hosting a malware called GammaDrop. The activity is part of an ongoing spear-phishing campaign targeting Ukrainian entities since at least early 2024 that’s designed to drop the […]

Continue Reading

This $3,000 Android Trojan Targeting Banks and Cryptocurrency Exchanges

Dec 05, 2024Ravie LakshmananCryptocurrency / Mobile Security As many as 77 banking institutions, cryptocurrency exchanges, and national organizations have become the target of a newly discovered Android remote access trojan (RAT) called DroidBot. “DroidBot is a modern RAT that combines hidden VNC and overlay attack techniques with spyware-like capabilities, such as keylogging and user interface […]

Continue Reading

Critical Mitel MiCollab Flaw Exposes Systems to Unauthorized File and Admin Access

Dec 05, 2024Ravie LakshmananVulnerability / IoT Security Cybersecurity researchers have released a proof-of-concept (PoC) exploit that strings together a now-patched critical security flaw impacting Mitel MiCollab with an arbitrary file read zero-day, granting an attacker the ability to access files from susceptible instances. The critical vulnerability in question is CVE-2024-41713 (CVSS score: 9.8), which relates […]

Continue Reading