Cisco’s NX-OS zero-day vulnerability (CVE-2024-20399) has been actively exploited by the Chinese state-sponsored threat actor known as Velvet Ant, highlighting the urgent need for cybersecurity professionals and network administrators to secure affected systems. In a forensic investigation led by Sygnia, it was discovered that Velvet Ant gained administrator-level credentials to access Cisco Nexus switches and […]
Phishing Attacks Evolve: Protecting Yourself from Remote Access Fraud While one-time passwords (OTPs) add security to online transactions, cybercriminals are devising new methods to steal money. This article explores a recent scam where attackers bypass OTPs to gain unauthorized access to bank accounts. The Scam Phishing with a Twist: Fraudsters send messages disguised as bank […]
The world of cybercrime continues to evolve, and a recent development involving the INC Ransomware operation highlights this ongoing trend. According to threat intelligence experts at KELA, a cybercriminal using the alias “salfetka” has allegedly posted an offer on Exploit and XSS hacking forums to sell the source code for both the Windows and Linux/ESXi […]