Information

ESET researchers provide details on a previously undisclosed China-aligned APT group that we track as PlushDaemon and one of its cyberespionage operations: the supply-chain compromise in 2023 of VPN software developed by a South Korean company, where the attackers replaced the legitimate installer with one that also deployed the group’s signature implant that we have named SlowStepper – a feature-rich backdoor with a toolkit of more than 30 components. Key points of this blogpost: PlushDaemon…

Read More

ESET researchers uncover a vulnerability in a UEFI application that could enable attackers to deploy malicious bootkits on unpatched systems 16 Jan 2025 ESET researchers have uncovered a vulnerability that, if exploited, would allow bad actors to circumvent UEFI Secure Boot and deploy malicious UEFI bootkits such as Bootkitty or BlackLotus on vulnerable systems. Tracked as CVE-2024-7344, the security flaw affects most UEFI-based systems and its exploitation would lead to the execution of untrusted code…

Read More

Cybercriminals have been known to approach their targets under the guise of company recruiters, enticing them with fake employment offers. After all, what better time to strike than when the potential victim is distracted by the possibility of getting a job? Since early 2024, ESET researchers have observed a series of malicious North Korea-aligned activities, where the operators, posing as headhunters, try to serve their targets with software projects that conceal infostealing malware. We call…

Read More

A North Korea-aligned activity cluster tracked by ESET as DeceptiveDevelopment drains victims’ crypto wallets and steals their login details from web browsers and password managers 20 Feb 2025 ESET researchers have observed a malicious campaign where North Korea-aligned threat actors, posing as headhunters, target freelance software developers with info-stealing malware. The activities – named DeceptiveDevelopment and going back to at least November 2023 – involve spearphishing messages that are being distributed on job-hunting and freelancing…

Read More

Business Security Data breaches can cause a loss of revenue and market value as a result of diminished customer trust and reputational damage Phil Muncaster 21 Jan 2025  •  , 5 min. read There were over 3,200 data compromises in the United States in 2023, with 353 million victims, including those affected multiple times, according to the US Identity Theft Resource Center (ITRC). Each one of those individuals might be a customer that decides to…

Read More

Don’t roll the dice on your online safety – watch out for bogus sports betting apps and other traps commonly set by scammers Phil Muncaster 28 Jan 2025  •  , 5 min. read Online gambling is big business. Topping revenue of $84bn in 2023, the business of online casinos, virtual poker and sports betting is on the rise. It’s been helped in no small part by the Supreme Court, whose ruling several years ago effectively…

Read More

Business Security Incoming laws, combined with broader developments on the threat landscape, will create further complexity and urgency for security and compliance teams Phil Muncaster 23 Jan 2025  •  , 5 min. read As Data Privacy Week (January 27-31) and Data Protection Day (January 28) approach, it’s the perfect time to spotlight the critical role data protection plays in the success of modern organizations. In fact, privacy and data protection go hand-in-hand with cybersecurity. Important…

Read More

WeLiveScience The renowned physicist explores how time and entropy shape the evolution of the universe, the nature of existence, and the eventual fate of everything, including humanity 29 Jan 2025 What is our place in the cosmic unfolding? How did we come to be, and where are we ultimately going in the grand scheme of time? These are some of the deepest existential questions that the renowned theoretical physicist and best-selling author Brian Greene explored…

Read More

Some employment scams take an unexpected turn as cybercriminals shift from “hiring” to “firing” staff Phil Muncaster 18 Feb 2025  •  , 5 min. read Most of us are in a job or looking for one. Or both. That’s largely why employment and work-from-home scams are so popular among cybercriminals (and even some state-aligned threat actors). The schemes typically lure the user by offering amazing job or casual employment opportunities. But in reality, all the…

Read More