Author Archives: Towhidur Rahman Pial



Towhidur Rahman Pial

Researchers Uncover a New Metador APT Targeting Telcos, ISPs, and Universities.
in Security Advisories & Alerts, Uncategorized

Researchers Uncover a New Metador APT Targeting Telcos, ISPs, and Universities.

Executive Summary SentinelLabs researchers uncovered a never-before-seen advanced threat actor we’ve dubbed ‘Metador’. Metador primarily targets telecommunications, internet service providers, and universities in several countries in the Middle East and Africa. The operators are highly aware of operations security, managing carefully segmented infrastructure per victim, and quickly deploying intricate countermeasures...

Read more

0
26 Sep 2022
The North Korean Lazarus Group Hacked Energy Providers Worldwide
in English articles, News

The North Korean Lazarus Group Hacked Energy Providers Worldwide

INTRODUCTION Cisco Talos observed North Korean state-sponsored APT Lazarus Group conducting malicious activity between February and July 2022. Lazarus has been previously attributed to the North Korean government by the U.S. Cybersecurity and Infrastructure Security Agency (CISA). The entry vectors involve the successful exploitation of vulnerabilities in VMWare products to establish initial...

Read more

0
13 Sep 2022
High-Severity Firmware Security Flaws Left Unpatched in HP Enterprise Devices
in Security Advisories & Alerts

High-Severity Firmware Security Flaws Left Unpatched in HP Enterprise Devices

A number of firmware security flaws uncovered in HP’s business-oriented high-end notebooks continue to be left unpatched in some devices even months after public disclosure. Binarly, which first revealed details of the issues at the Black Hat USA conference in mid-August 2022, said the vulnerabilities “can’t be detected by firmware integrity monitoring systems due...

Read more

0
13 Sep 2022
Travel Industry Recovering From Covid Turbulence, Grounded By Cyberattacks
in English articles, News, Security Advisories & Alerts

Travel Industry Recovering From Covid Turbulence, Grounded By Cyberattacks

Cybercrime Activities At A Glance  Introduction  The Aviation industry is a critical, strategic, and economically important sector for any nation. The pandemic-struck industry has started showing signs of gradual recovery after two years of volatility, however, attaining the pre-COVID global travel figures seems still farfetched until mid-2023. Amidst epidemic chaos,...

Read more

0
05 Sep 2022
Palo Alto Recognizes Vulnerability Impacting PAN-OS® (CVE-2022-0028)
in CVE, Security Advisories & Alerts, Uncategorized

Palo Alto Recognizes Vulnerability Impacting PAN-OS® (CVE-2022-0028)

Global Critical Infrastructure Potentially Vulnerable To Reflected Amplification-Based Denial-Of-Service (RDoS) Attacks Introduction Over the past few weeks, Cyble Research & Intelligence Labs has observed the active exploitation of a recently discovered vulnerability found in the Palo Alto Networks’ PAN-OS operating system that runs the firewalls and could allows a remote...

Read more

0
05 Sep 2022
New Android Banking Trojan Zanubis Spotted In The Wild.
in CVE, English articles, Security Advisories & Alerts

New Android Banking Trojan Zanubis Spotted In The Wild.

Cyble Research and Intelligence Labs (CRIL) has been tracking the activities of various Android Banking Trojans such as Hydra, Ermac, and Amextroll, amongst several others. During a routine threat-hunting exercise, we came across a Twitter post where a researcher mentioned a malware sample. After an in-depth analysis, the malware was identified as a new Android...

Read more

0
04 Sep 2022