Cyber Hunter

Cyber Hunter Your Digital Hunter.💻🏹
Hunting Down Cyber Threats, Protecting Your Digital Realm.

The UK’s National Cyber Security Centre (NCSC) has issued a warning to organisations nationwide, urging them to review a...
02/03/2026

The UK’s National Cyber Security Centre (NCSC) has issued a warning to organisations nationwide, urging them to review and strengthen their cyber security measures amid the escalating conflict in the Middle East. As geopolitical tensions continue to shift rapidly, concerns are growing about potential cyber risks that could indirectly impact UK-based businesses and institutions.
While the NCSC has stated that there is currently no evidence of a significant rise in direct cyber threats from Iran targeting the United Kingdom, officials emphasise that the situation remains dynamic and could change quickly. Organisations are therefore advised to stay vigilant and take proactive steps to assess and enhance their cyber resilience.
Although the overall direct threat level has not substantially increased, the NCSC has highlighted a heightened risk of indirect cyber impacts. This is particularly relevant for organisations operating in the Middle East or those reliant on supply chains connected to the region. Disruptions or cyber activity affecting these areas could create cascading effects, exposing UK businesses to third-party vulnerabilities.
The advisory further notes that Iranian state actors and affiliated cyber groups almost certainly retain the capability to conduct malicious cyber operations. While there is no indication of a coordinated campaign specifically targeting the UK at present, such actors have historically leveraged geopolitical instability to carry out cyber espionage, disruptive activity, and influence operations.

Israel warns of BiBi wiper attacks targeting Linux and Windows: Security researchers found a Windows equivalent for the ...
13/11/2023

Israel warns of BiBi wiper attacks targeting Linux and Windows: Security researchers found a Windows equivalent for the recently discovered BiBi-Linux, a data-wiping malware used in attacks to destroy data on systems at Israeli companies.

Microsoft still unsure how hackers stole Azure AD signing key: Microsoft says it still doesn't know how Chinese hackers ...
14/07/2023

Microsoft still unsure how hackers stole Azure AD signing key: Microsoft says it still doesn't know how Chinese hackers stole an inactive Microsoft account (MSA) consumer signing key used to breach the Exchange Online and Azure AD accounts of two dozen organizations, including government agencies.  

Hackers can break into cars through their headlights using a device that costs just £2,000! Automotive security experts ...
10/04/2023

Hackers can break into cars through their headlights using a device that costs just £2,000! Automotive security experts Ian Tabor and Ken Tindell said that hackers are ripping off bumpers and headlights to gain access to wiring, allowing them to plug in widely available electronics used to hack cars’ internal computer networks. Once connected, the devices automatically disable engine immobilisers and can be used to open windows or even activate door locks, the experts said. Such hacking devices can be bought online for prices ranging between three and four figures, according to Mr Tabor and Mr Tindell. Illicit vendors selling these devices claim they give instant access to high-value cars including Ferraris, Rolls-Royces, Lamborghinis and more. The car expert said the hacking device was designed to be plugged into a socket typically concealed underneath a car’s headlights or bumpers. From there the device accesses the vehicle’s CAN bus, an internal computer network used to control its sensors and systems. A Toyota spokesman said: “While it is, unfortunately, very difficult for any auto manufacturer to completely eliminate the risk from people and organisations acting with criminal intent, we regularly collaborate and share information with insurance associations and police authorities throughout the world to help reduce this risk.”


www.cybersecguardians.com

U.K. National Crime Agency Sets Up Fake DDoS-For-Hire Sites to Catch Cybercriminals.In what's a case of setting a thief ...
26/03/2023

U.K. National Crime Agency Sets Up Fake DDoS-For-Hire Sites to Catch Cybercriminals.

In what's a case of setting a thief to catch a thief, the U.K. National Crime Agency (NCA) revealed that it has created a network of fake DDoS-for-hire websites to infiltrate the online criminal underground.

"All of the NCA-run sites, which have so far been accessed by around several thousand people, have been created to look like they offer the tools and services that enable cyber criminals to execute these attacks," the law enforcement agency said.

"However, after users register, rather than being given access to cyber crime tools, their data is collated by investigators."

The effort is part of an ongoing international joint effort called Operation PowerOFF in collaboration with authorities from the U.S., the Netherlands, Germany, Poland, and Europol aimed at dismantling criminal DDoS-for-hire infrastructures worldwide.

As many as 30 malicious Android apps with cumulative downloads of nearly 10 million have been found on the Google Play S...
28/07/2022

As many as 30 malicious Android apps with cumulative downloads of nearly 10 million have been found on the Google Play Store distributing adware.

"All of them were built into various programs, including image-editing software, virtual keyboards, system tools and utilities, calling apps, wallpaper collection apps, and others," Dr.Web said in a Tuesday write-up.

While masquerading as innocuous apps, their primary goal is to request permissions to show windows over other apps and run in the background in order to serve intrusive ads.

To make it difficult for the victims to detect and uninstall the apps, the adware trojans hide their icons from the list of installed apps in the home screen or replace the icons with others that are likely to be less noticed (e.g., SIM Toolkit).
Some of these apps also offer the advertised features, as observed in the case of two apps: "Water Reminder- Tracker & Reminder" and "Yoga- For Beginner to Advanced." However, they also covertly load various websites in WebView, and simulate user actions to click on banners and ads.

Also uncovered are another set of apps distributing the Joker malware in the form of launcher, camera, and emoji stickers apps that, when installed, subscribe users to paid mobile services without their knowledge and consent
list of malicious Apps:
Photo Editor: Retouch & Cutout
Photo Editor: Art Filters
Photo Editor - Design Maker
Photo Editor & Background Eraser
Photo & Exif Editor
Photo Editor - Filters Effects
Photo Filters & Effects
Photo Editor : Blur Image
Photo Editor : Cut, Paste
Emoji Keyboard: Stickers & GIF
Neon Theme Keyboard
Neon Theme - Android Keyboard
Cashe Cleaner
Fancy Charging
FastCleaner: Cashe Cleaner
Call Skins - Caller Themes
Funny Caller
CallMe Phone Themes
InCall: Contact Background
MyCall - Call Personalization
Caller Theme
Caller Theme
Funny Wallpapers - Live Screen
4K Wallpapers Auto Changer
NewScrean: 4D Wallpapers
Sock Wallpapers & Backgrounds
Notes - reminders and lists

Microsoft has officially resumed blocking Visual Basic for Applications (VBA) macros by default across Office apps, week...
24/07/2022

Microsoft has officially resumed blocking Visual Basic for Applications (VBA) macros by default across Office apps, weeks after temporarily announcing plans to roll back the change.

"Based on our review of customer feedback, we've made updates to both our end user and our IT admin documentation to make clearer what options you have for different scenarios," the company said in an update on July 20.

Earlier this February, Microsoft publicized its plans to disable macros by default in Office applications such as Access, Excel, PowerPoint, Visio, and Word as a way to prevent threat actors from abusing the feature to deliver malware.

It's a known fact that a majority of the damaging cyberattacks today leverage email-based phishing lures to spread bogus documents containing malicious macros as a primary vector for initial access.

"Macros can add a lot of functionality to Office, but they are often used by people with bad intentions to distribute malware to unsuspecting victims," the company notes in its documentation.

By disabling the option by default for any Office file downloaded from the internet or received as an email attachment, the idea is to eliminate an entire class of attack vector and disrupt the activities of malware such as Emotet, IcedID, Qakbot, and Bumblebee.
However, Microsoft backtracked on the change in the first week of July, telling The Hacker News that it's pausing the rollout of the feature to make additional usability improvements.

In the intervening months since it began previewing the tweaks in April, the tech giant's decision to block macros has had a ripple effect of its own, leading adversaries to adapt their campaigns to resort to alternative distribution methods such as .LNK and .ISO files.

That said, using malicious macros as an entry point to trigger the infection chain is not limited to Microsoft Office alone.

Last week, HP Wolf Security flagged an "unusually stealthy malware campaign" that makes use of OpenDocument text (.odt) files to distribute malware targeting the hotel industry in Latin America.

Address

Beirut

Telephone

+96178942589

Website

Alerts

Be the first to know and let us send you an email when Cyber Hunter posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Shortcuts

Share

Category