CyberSecurity Revolution
This category enlists recent happenings in the cyber security world.
Russian Ransomware Group Cuba Uses Advanced Techniques in Attacks The Russian ransomware group known as Cuba has been targeting US organizations and critical infrastructure providers in highly profitable ransomware attacks. The group employs a variety
Continue readingVulnerabilities in TP-Link Tapo L530E Smart Bulb and App Allow Wi-Fi Password Theft Academic researchers have identified four vulnerabilities in the TP-Link Tapo L530E smart bulb and its accompanying mobile application that can be exploited
Continue readingResearchers Discover Fake Airplane Mode Attack on iPhones Researchers at Jamf have discovered a technique called ‘fake airplane mode’ that allows attackers to maintain connectivity on iPhones while making users believe they are offline. The
Continue readingExploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning The exploitation of a critical vulnerability in Citrix ShareFile, tracked as CVE-2023-24489, has seen a significant increase after the US Cybersecurity and Infrastructure Security Agency
Continue readingMirai Common Attack Methods Remain Consistent, Effective The Mirai botnet, known for driving large-scale distributed denial of service (DDoS) attacks, continues to be a significant threat. Despite minimal evolution, Mirai and its variants exploit vulnerabilities
Continue readingCybercriminals Abusing Cloudflare R2 for Hosting Phishing Pages, Experts Warn The use of Cloudflare R2 to host phishing pages has increased 61-fold in the past six months, with the majority of campaigns targeting Microsoft login
Continue readingHealth Data of 4M Stolen in Cl0p MOVEit Breach of Colorado Department The Colorado Department of Health Care Policy & Financing (HCPF) has suffered a cyberattack by the Cl0p ransomware group, resulting in the theft
Continue readingXWorm and Remcos RAT Exploit PDF Files to Infect Critical Infrastructure A phishing campaign targeting victims in Europe and North America is using a malicious PDF file to deliver a Rust-based injector called Freeze[.]rs, which
Continue readingEvilProxy Cyberattack Flood Targets Execs via Microsoft 365 A phishing campaign called EvilProxy has targeted thousands of Microsoft 365 user accounts worldwide, sending 120,000 phishing emails to over 100 organizations in a three-month period. The
Continue readingMajor Design Flaw in Billions of Intel CPUs Exposes Data Leakage Vulnerability A newly revealed flaw in Intel CPUs, called ‘Downfall,’ allows for data leakage between users sharing a computer or cloud environment. The vulnerability
Continue reading
Hey There, I am Amey Anekar - Cyber Security Specialist with a passion for solving security problems even when resources are limited. I've been fortunate to develop a knack for gauging an organization's cyber security posture and helping them plan a transition towards becoming more resilient in the face of cyber threats. It's a privilege to be able to contribute to the field and assist organizations in safeguarding their digital assets. Get In Touch