Sly Uduosa

Sylvester Uduosa who goes by the nickname 'Sly' is a Legal Practitioner, Certified Ethical Hacker and Python Programmer.

Malicious Android Apps Pose as Google, Instagram, WhatsApp to Steal Credentials

It has been noted that malicious Android apps that pose as Google, Instagram, Snapchat, WhatsApp, and X (previously Twitter) can steal user credentials from devices that have been hijacked. In a recent analysis, the threat research team at SonicWall Capture Labs stated that “this malware uses famous Android app icons to mislead users and trick […]

Malicious Android Apps Pose as Google, Instagram, WhatsApp to Steal Credentials Read More »

Ex-NSA Employee Sentenced to 22 Years for Trying to Sell U.S. Secrets to Russia

A former National Security Agency (NSA) employee in the United States was given a sentence of nearly 22 years (262 months) in jail for trying to send confidential documents to Russia. “This sentence should serve as a stark warning to all those entrusted with protecting national defense information that there are consequences to betraying that

Ex-NSA Employee Sentenced to 22 Years for Trying to Sell U.S. Secrets to Russia Read More »

Android Virus Wpeeper Uses Compromised WordPress Sites to Hide C2 Servers

Researchers studying cybersecurity have uncovered a yet unreported malware that targets Android smartphones and evades detection by using hacked WordPress websites as relays for its real command-and-control (C2) servers. Code-named Wpeeper, the malware is an ELF binary that uses HTTPS to encrypt its C2 communications. “Wpeeper is a typical backdoor Trojan for Android systems, supporting

Android Virus Wpeeper Uses Compromised WordPress Sites to Hide C2 Servers Read More »

New Android Trojan ‘SoumniBot’ Evades Detection with Clever Tricks

SoumniBot is a new Android malware that targets South Korean users by taking advantage of flaws in the manifest extraction and parsing process. It has been discovered in the wild. Researchers at Kaspersky have identified the virus as “notable for an unconventional approach to evading analysis and detection, namely obfuscation of the Android manifest,” according

New Android Trojan ‘SoumniBot’ Evades Detection with Clever Tricks Read More »

Hive RAT Creators and $3.5M Cryptojacking Mastermind Arrested in Global Crackdown

Two people have been detained in Australia and the United States in relation to a purported plan to create and disseminate the remote access trojan known as Hive RAT (formerly Firebird). According to the U.S. Department of Justice (DoJ), the virus “gave the malware purchasers control over victim computers and enabled them to access victims’

Hive RAT Creators and $3.5M Cryptojacking Mastermind Arrested in Global Crackdown Read More »

The Mispadu Trojan Attacks Europe, Compromising Thousands of Credentials

The banking trojan known as Mispadu now targets users in Italy, Poland, and Sweden in addition to Latin America (LATAM) and Spanish-speaking people. According to Morphisec, the campaign’s targets include businesses in the banking, services, automotive manufacturing, legal, and commercial sectors. According to a report released last week by security expert Arnold Osipov, “Mexico remains

The Mispadu Trojan Attacks Europe, Compromising Thousands of Credentials Read More »

U.S. Cyber Safety Board Denounces Microsoft for Security Vulnerability Caused by Chinese Hackers

Microsoft has come under fire from the U.S. Cyber Safety Review Board (CSRB) for a string of security failings that allowed a nation-state group named Storm-0558, based in China, to compromise almost two dozen businesses in Europe and the United States last year. According to the results, which were made public by the Department of

U.S. Cyber Safety Board Denounces Microsoft for Security Vulnerability Caused by Chinese Hackers Read More »

U.S. Charges Iranian Hacker, Offers $10 Million Reward for Capture

An Iranian person was the target of an alleged multi-year cyber-enabled campaign by the U.S. Department of Justice (DoJ) on Friday, when the DoJ unsealed an indictment against him. The campaign was intended to breach both private and governmental entities in the United States. According to reports, over a dozen organisations have been targeted, including

U.S. Charges Iranian Hacker, Offers $10 Million Reward for Capture Read More »

Over 225,000 Compromised ChatGPT Credentials Up for Sale on Dark Web Markets

Between January and October 2023, more than 225,000 logs with compromised OpenAI ChatGPT credentials were put up for sale on dark web marketplaces, according to recent research from Group-IB. These login credentials were discovered in information theft records connected to the Raccoon, RedLine, and LummaC2 malware. “The number of infected devices grew significantly between August

Over 225,000 Compromised ChatGPT Credentials Up for Sale on Dark Web Markets Read More »

CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability

Following reports that it’s likely being exploited in Akira ransomware attacks, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a now-patched security flaw affecting Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defence (FTD) software to its list of known exploited vulnerabilities (KEV) on Thursday. The high-severity information disclosure flaw in question is CVE-2020-3259

CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability Read More »