The advanced persistent threat (APT) actor known as Transparent Tribe has been observed targeting both Windows and BOSS (Bharat Operating System Solutions) Linux systems with malicious Desktop shortcut files in attacks targeting Indian Government entities. „Initial access is achieved through spear-phishing emails,“ CYFIRMA said. „Linux BOSS environments are targeted via weaponized .desktop
Cybersecurity researchers have discovered a malicious Go module that presents itself as a brute-force tool for SSH but actually contains functionality to discreetly exfiltrate credentials to its creator. „On the first successful login, the package sends the target IP address, username, and password to a hard-coded Telegram bot controlled by the threat actor,“ Socket researcher Kirill Boychenko
Cybersecurity researchers are calling attention to multiple campaigns that are taking advantage of known security vulnerabilities and exposed Redis servers to various malicious activities, including leveraging the compromised devices as IoT botnets, residential proxies, or cryptocurrency mining infrastructure. The first set of attacks entails the exploitation of CVE-2024-36401 (CVSS score: 9.8),
Cybersecurity researchers have shed light on a novel attack chain that employs phishing emails to deliver an open-source backdoor called VShell. The „Linux-specific malware infection chain that starts with a spam email with a malicious RAR archive file,“ Trellix researcher Sagar Bade said in a technical write-up. „The payload isn’t hidden inside the file content or a macro, it’s encoded directly
Pentesting remains one of the most effective ways to identify real-world security weaknesses before adversaries do. But as the threat landscape has evolved, the way we deliver pentest results hasn’t kept pace. Most organizations still rely on traditional reporting methods—static PDFs, emailed documents, and spreadsheet-based tracking. The problem? These outdated workflows introduce delays,
