12 matches found
Confucius Hackers Hit Pakistan With New WooperStealer and Anondoor Malware
The threat actor known as Confucius has been attributed to a new phishing campaign that has targeted Pakistan with malware families like WooperStealer and Anondoor. "Over the past decade, Confucius has repeatedly targeted government agencies, military organizations, defense contractors, and...
Patchwork Hackers Target Bhutan with Advanced Brute Ratel C4 Tool
The threat actor known as Patchwork has been linked to a cyber attack targeting entities with ties to Bhutan to deliver the Brute Ratel C4 framework and an updated version of a backdoor called PGoShell. The development marks the first time the adversary has been observed using the red teaming...
Operation ChattyGoblin: Hackers Targeting Gambling Firms via Chat Apps
A gambling company in the Philippines was the target of a China-aligned threat actor as part of a campaign that has been ongoing since October 2021. Slovak cybersecurity firm ESET is tracking the series of attacks against Southeast Asian gambling companies under the name Operation ChattyGoblin...
Confucius Uses Pegasus Spyware-related Lures to Target Pakistani Military
While investigating the Confucius threat actor, we found a recent spear phishing campaign that utilizes Pegasus spyware-related lures to entice victims into opening a malicious document downloading a file stealer...
Novel Confucius Android spyware hits military, nuclear entities in Pakistan
By Waqas Another day, another Android spyware - This time, there are two spyware targeting sensitive infrastructure in Pakistan on behalf of India. This is a post from HackRead.com Read the original post: Novel Confucius Android spyware hits military, nuclear entities in Pakistan...
Researchers Uncover Android Spying Campaign Targeting Pakistan Officials
Two new Android surveillanceware families have been found to target military, nuclear, and election entities in Pakistan and Kashmir as part of a pro-India, state-sponsored hacking campaign. Dubbed Hornbill and Sunbird, the malware impersonates legitimate or seemingly innocuous services to cover...
This Week in Security News: Hacker Reports and Router Reboots
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, hackers warn Congress that internet security across software and computer networks are insecure. Also, a malware, dubbed VPNFilter, infected...
CVE-2014-7768
The Analects of Confucius aka com.azbc88881.lunyu application 8.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7768
The Analects of Confucius aka com.azbc88881.lunyu application 8.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Analects of Confucius aka com.azbc88881.lunyu application 8.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7768
The Analects of Confucius aka com.azbc88881.lunyu application 8.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7768
The CVE-2014-7768 entry concerns the Analects of Confucius (com.azbc88881.lunyu) Android app version 8.0, where SSL certificate validation is not performed. This allows a man-in-the-middle attacker to spoof servers and obtain sensitive information through crafted certificates. The available docum...