Sly Uduosa

Sylvester Uduosa who goes by the nickname 'Sly' is a Legal Practitioner, Certified Ethical Hacker and Python Programmer.

Over 225,000 Compromised ChatGPT Credentials Up for Sale on Dark Web Markets

Leave a Comment / Uncategorized /

Between January and October 2023, more than 225,000 logs with compromised OpenAI ChatGPT credentials were put up for sale on dark web marketplaces, according to recent research from Group-IB. These login credentials were discovered in information theft records connected to the Raccoon, RedLine, and LummaC2 malware. “The number of infected devices grew significantly between August […]

Over 225,000 Compromised ChatGPT Credentials Up for Sale on Dark Web Markets Read More »

CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability

Leave a Comment / Uncategorized /

Following reports that it’s likely being exploited in Akira ransomware attacks, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a now-patched security flaw affecting Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defence (FTD) software to its list of known exploited vulnerabilities (KEV) on Thursday. The high-severity information disclosure flaw in question is CVE-2020-3259

CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability Read More »

WordPress Bricks Theme Under Active Attack: Critical Flaw Impacts 25,000+ Sites

Leave a Comment / Vulnerabilities /

Threat actors are actively using a serious security vulnerability in the WordPress Bricks theme to force arbitrary PHP code to run on vulnerable installations. The vulnerability, identified as CVE-2024-25600 (CVSS score: 9.8), allows remote code execution to be accomplished by unauthorised attackers. It affects every Bricks version up to and including 1.9.6. Only a few

WordPress Bricks Theme Under Active Attack: Critical Flaw Impacts 25,000+ Sites Read More »

Russian Government Software Backdoored to Deploy Konni RAT Malware

Leave a Comment / Malware /

A backdoor has been included in an installer for a utility that is probably used by the Ministry of Foreign Affairs (MID)’s Russian Consular Department to distribute the remote access trojan Konni RAT (also known as UpDog). The investigation was conducted by German cybersecurity firm DCSO, which concluded that actors with ties to the Democratic

Russian Government Software Backdoored to Deploy Konni RAT Malware Read More »

Apple Issues Patch for Critical Zero-Day in iPhones, Macs – Update Now

Leave a Comment / Technology /

In response to a zero-day vulnerability that is being actively exploited in the wild, Apple provided security upgrades on Monday for the Safari web browser, iOS, iPadOS, macOS, tvOS, and Linux. A threat actor could use the problem, identified as CVE-2024-23222, which is a type confusion bug in the WebKit browser engine, to execute arbitrary

Apple Issues Patch for Critical Zero-Day in iPhones, Macs – Update Now Read More »

BreachForums Founder Will Not Be Going To Jail

Leave a Comment / Data Breach /

Conor Brian Fitzpatrick, who founded and oversaw BreachForums, received a sentence of time served and 20 years of supervised release. Fitzpatrick, also known online as “pompompurin,” was detained in New York in March 2023 and charged with possessing child pornography and conspiring to commit access device fraud. After posting a $300,000 bond and entering a

BreachForums Founder Will Not Be Going To Jail Read More »

Syrian Hackers are Giving Cybercriminals Access to a Covert C#-based Silver RAT.

Leave a Comment / Malware /

A remote access trojan (RAT) known as Silver RAT, developed by threat actors going by the moniker Anonymous Arabic, can run concealed apps covertly and evade security measures. Cybersecurity company Cyfirma stated in a research released last week that “the developers operate on multiple hacker forums and social media platforms, showcasing an active and sophisticated

Syrian Hackers are Giving Cybercriminals Access to a Covert C#-based Silver RAT. Read More »

29-Year-Old Ukrainian Cryptojacking Kingpin Taken into Arrest for Abusing Cloud Services

Leave a Comment / Cyber Attacks /

As part of a “sophisticated cryptojacking scheme,” a 29-year-old Ukrainian national has been detained; the operation brought in over $2 million (€1.8 million) in illegal revenues. With assistance from Europol and an unidentified cloud service provider, the National Police of Ukraine captured the individual dubbed the “mastermind” of the operation on January 9 in Mykolaiv,

29-Year-Old Ukrainian Cryptojacking Kingpin Taken into Arrest for Abusing Cloud Services Read More »

Behind the Scenes of Matveev’s Ransomware Empire: Tactics and Team

Leave a Comment / Malware /

The inner workings of the ransomware operation headed by Russian national Mikhail Pavlovich Matveev, who was charged by the US government earlier this year for his claimed involvement in thousands of attacks worldwide, have been revealed by cybersecurity researchers. According to reports, Matveev—who goes by the identities Wazawaka, m1x, Boriselcin, Uhodiransomwar, Orange, and waza—lives in

Behind the Scenes of Matveev’s Ransomware Empire: Tactics and Team Read More »