Alerts

Stay updated with CyberLabs’ latest news alerts covering critical cybersecurity incidents, breaking threats, and important industry developments that matter to your digital safety.

Cybersecurity Architecture
An authentication bypass vulnerability in Zoho’s ManageEngine is being exploited in the wild
An authentication bypass vulnerability in Zoho’s ManageEngine is being exploited in the wild

6 Dec 2021

On 3rdDecember 2021 Manage Engine released a security update on the vulnerability tracked as CVE-2021-44515. “An authentication bypass vulnerability in ManageEngine Desktop Central MSP was identified and the vulnerability can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central MSP server.” Mentioned in the advisory

Read More
Mozilla Fix a Security Flaw in Network Security Services Cryptography Library
Mozilla Fix a Security Flaw in Network Security Services Cryptography Library

3 Dec 2021

On 1stDecember 2021, Mozilla release a Security Advisor addressing the Critical vulnerability affecting its cross-platform Network Security Services (NSS) cryptography libraries.

Read More
RTF injection technique is used by APT group in recent phishing attacks
RTF injection technique is used by APT group in recent phishing attacks

2 Dec 2021

Three State sponsored threat actors from China, India and Russia is using a new novel RTF (Rich Text Format) technique in their recent phishing attacks.

Read More
Android Banking Trojan Campaigns Infected Over 300,000 Users
Android Banking Trojan Campaigns Infected Over 300,000 Users

1 Dec 2021

ThreatFabric researchers has discovered a malware campaign that distribute android trojans that spread via the official Google Play Store. They have found four distinct Android banking trojans that was distribute between August and November 2021 which has infected more than 300,000 devices through multiple dropper apps.

Read More
Panasonic disclosed a security breach
Panasonic disclosed a security breach

30 Nov 2021

Panasonic the Japanese multinational conglomerate disclosed a security breach after threat actors gained access to its servers which containing sensitive data in November 2021.

Read More
IKEA faces a cyberattack
IKEA faces a cyberattack

29 Nov 2021

Security news platform Bleeping Computer reported on 26thNovember 2021 that IKEA is facing a cyber-attack where threat actors are targeting Employees in IKEA in phishing attacks using stolen reply-chain emails. (Reply-chain email attack happens when attackers steal legitimate email accounts and sending emails through that compromised email accounts/internal servers. So, that recipients trust the email and are likely to open the malicious documents attached)

Read More
Warnings about Scammers targeting people for Black Friday
Warnings about Scammers targeting people for Black Friday

26 Nov 2021

Black Friday sales has arrived, and phishing attackers and online-shopping scams are using big brands to steal online credentials.

Read More
Apple sues NSO Group for using Pegasus spyware on iPhone Users
Apple sues NSO Group for using Pegasus spyware on iPhone Users

25 Nov 2021

On 23rdNovember 2021, Apple sue NSO Group and its parent company Q Cyber Technologies in a U.S. federal court for illegally targeting users with the Pegasus spyware.

Read More
Android Info Stealing trojan has infected more than 9 million Android Devices
Android Info Stealing trojan has infected more than 9 million Android Devices

24 Nov 2021

A Malware Trojan name Android.Cynos.7. origin has been found in 190 games on Huawei’s AppGallery. It’s reported that approximately 9,300,000 installs were made on this malicious app. According to Researchers from Dr.Web AV The Android.Cynos.7.origin is one of the modification of the Cynos malware which is design to steal information.

Read More
GoDaddy data breach has affect 1.2 million customers
GoDaddy data breach has affect 1.2 million customers

23 Nov 2021

On 22ndNovember 2021 GoDaddy published a data breach notification stating that 1.2 million customer data was exposed after threat actors hacked the company’s Managed WordPress hosting environment.

Read More
Most Commonly used Passwords in 2021
Most Commonly used Passwords in 2021

22 Nov 2021

According to the Analysis done by NordPass taking data dumps which has been published online it was found that most of the people still use weak password. This study of ‘Top 200 most common passwords’ was compiled in partnership with independent researchers specializing in research of cybersecurity incidents. This is consisted of 4TB data bases of leaked password from around 50 countries such as US, Australia, Europe and Russia.

Read More
New phishing campaign targeting Tiktok influencers Accounts
New phishing campaign targeting Tiktok influencers Accounts

19 Nov 2021

Tiktok accounts belongs to influencers, influencers management firms, brand consultants, social production studios… have been targeted by a new phishing campaign. Abnormal Security researcher Rachelle Chouinard wrote in the blog published that this phishing campaign was distributed in two rounds on October 2, 2021, and on November 1, 2021.

Read More