Tag: Cyber Security

Indian government entities have been targeted by two sophisticated cyber-espionage campaigns, dubbed Gopher Strike and Sheet Attack, attributed to a Pakistan-linked threat actor. The attacks leverage phishing emails, fake Adobe update prompts, and trusted platforms like Google Sheets and GitHub to deploy custom Golang-based malware, enabling persistent access and remote command execution on infected systems.

A newly disclosed critical vulnerability in Zoom Node Multimedia Routers (MMRs) allows authenticated meeting participants to execute arbitrary commands remotely. Tracked as CVE-2026-22844 with a CVSS score of 9.9, the flaw affects Zoom Node deployments running versions prior to 5.2.1716.0 and requires immediate patching.

Security researchers have uncovered a sophisticated Windows malware campaign that relies on social engineering, malicious shortcuts, and abused cloud services like GitHub and Dropbox to bypass Microsoft Defender and deploy ransomware, RATs, and banking trojans without exploiting software vulnerabilities.

North Korean threat actors linked to the Contagious Interview campaign are using malicious VS Code projects to deploy backdoors, steal data, and gain remote access to developer systems.

A new Remcos RAT campaign is using fileless PowerShell techniques to bypass security defenses and gain persistent remote access to infected systems