November, 2021 - SLYTECH

Researchers Discover “Void Balaur” the Hacker-for-Hire Group Active since 2015

Leave a Comment / Cyber Attacks / Sly Uduosa

Researchers have discovered a hacker-for-hire group called “Void Balaur” which has been linked to strings of cyberespionage and data theft activities targeting politicians, human right activists and government officials since 2015 for financial gain. The group was only recently unmasked when advertisements of its services was cited in a Russia-speaking underground forum dating all the […]

Researchers Discover “Void Balaur” the Hacker-for-Hire Group Active since 2015 Read More »

ISPs and Telecomms are Currently Targets of Iranian Hackers Lyceum

Leave a Comment / Cyber Attacks / Sly Uduosa

Threat actors believed to be affiliated with Iran has been linked to series of targeted attacks aimed at telecommunication operators and internet service providers (ISPs) in Morocco, Saudi Arabia and Isreal and a few ministries of foreign affairs (MFA) in Africa. The group tracked as Lyceum is believed to have occurred between July and October

ISPs and Telecomms are Currently Targets of Iranian Hackers Lyceum Read More »

Palo Alto Warns of Zero-Day Bug in Firewalls Using GlobalProtect Portal VPN

Leave a Comment / Vulnerabilities / Sly Uduosa

A Zero-day vulnerability has been disclosed in Palo Alto Networks GlobalProtect VPN capable of being abused by an unauthenticated network-based attacker to execute arbitrary code on affected devices using root privileges Tracked as CVE-2021-3064 (CVSS score:9.8), the security weakness impacts PAN-OS 8.1 versions earlier than PAN-OS 8.1.1.17. This flaw was discovered and reported by Masachusetts-based

Palo Alto Warns of Zero-Day Bug in Firewalls Using GlobalProtect Portal VPN Read More »

OWASP Top 10 2021 Quick List Review

REvil Ransomware Associates Arrested in Global Takedown

Leave a Comment / Cyber Attacks / Sly Uduosa

Law enforcement authorities in Romania on November 4 arrested two individuals for their role played as affiliates of REvill ransomware. The suspects have been linked to more than 5,000 ransomware attacks and extorted close to $600,000 from victims. The arrest is a part of a coordinated operation called GoldDust, which has resulted in arrest of

REvil Ransomware Associates Arrested in Global Takedown Read More »

Robinhood Trading App Suffers Data Breach of over 7 Million Users’ Account

Leave a Comment / Data Breach / Sly Uduosa

Robinhood has disclosed a security breach incidence which took place “late in the evening of November 3” and affected over 7 million customers eventually resulting in unauthorized access of personal information by an unidentified threat actor. They have however stated that the attack has been contained and no Social Security, bank account numbers or debit

Robinhood Trading App Suffers Data Breach of over 7 Million Users’ Account Read More »

Mekotio Banking Trojan Returns with New Stealth Techniques

Leave a Comment / Cyber Attacks / Sly Uduosa

Mekotio banking trojan operators have resurfaced as a noticeable shift in its infection flow has been made in order to stay under the radar and evade security software, while it stages nearly 100 attacks over the last 3 months. The modular attack is one of its main characteristics as it gives attackers the ability to

Mekotio Banking Trojan Returns with New Stealth Techniques Read More »

Pegasus-maker NSO Group and 3 Others Sanctioned by the U.S. Department of Commerce

Leave a Comment / Uncategorized / Sly Uduosa

Four companies as well as the Isreal-based spyware company NSO Group and Candiru have been added to a list of entities engaging in “malicious cyber activities” by the U.S. Commerce Department. This addition is based on evidence that spyware was developed and supplied to foreign governments who in turn used these tools to maliciously target

Pegasus-maker NSO Group and 3 Others Sanctioned by the U.S. Department of Commerce Read More »

Facebook Stops Facial Recognition and Deletes Billions of Records

Leave a Comment / Technology / Sly Uduosa

Meta, facebook’s newly rebranded parent company on Tuesday announced plans to stop its decade-old “Face Recognition” system and would also delete more than a billion users’ facial recognition templates as part of a wider initiative to limit the use of the technology across its products. This shutdown would take effect over the coming weeks and

Facebook Stops Facial Recognition and Deletes Billions of Records Read More »

Google Releases Patches for a New Android 0-Day Vulnerability

Leave a Comment / Vulnerabilities / Sly Uduosa

Monthly security patches have been released by Google for Android, fixing 39 flaws inclusive of a zero-day vulnerability which is actively being exploited in the wild in limited targeted attacks. The zero-day bug tracked as CVE-2021-1048 is described as a use-after-free vulnerability in the kernel which could be exploited for local privilege escalation. Use-after-free could

Google Releases Patches for a New Android 0-Day Vulnerability Read More »

November 2021