Blog

26Mar 2025 by Webmaster

Titan Security Keys now available in more countries (Google Online Security Blog)

Sécurité
Posted by Christiaan Brand, Group Product Manager We’re excited to announce that starting today, Titan Security Keys are available for purchase in more than 10 new countries: Ireland Portugal The Netherlands Denmark Norway Sweden Finland Australia New Zealand Singapore Puerto Rico This expansion means Titan Security Keys are now available in 22 markets, including previously announced countries like Austria, Belgium, Canada, France, Germany, Italy, Japan, Spain, Switzerland, the UK, and the US. What is a Titan Security Key? A Titan Security Key is a small, physical device that you can use to verify your identity when you sign in to your Google Account. It’s like a second password that’s much harder for cybercriminals to steal. Titan Security Keys allow you to store your passkeys on a strong, purpose-built device that…
Read More
26Mar 2025 by Webmaster

New SparrowDoor Backdoor Variants Found in Attacks on U.S. and Mexican Organizations

Actualités
The Chinese threat actor known as FamousSparrow has been linked to a cyber attack targeting a trade group in the United States and a research institute in Mexico to deliver its flagship backdoor SparrowDoor and ShadowPad. The activity, observed in July 2024, marks the first time the hacking crew has deployed ShadowPad, a malware widely shared by Chinese state-sponsored actors. "FamousSparrow
Read More
26Mar 2025 by Webmaster

Titan Security Keys now available in more countries

Actualités
Posted by Christiaan Brand, Group Product Manager We’re excited to announce that starting today, Titan Security Keys are available for purchase in more than 10 new countries: Ireland Portugal The Netherlands Denmark Norway Sweden Finland Australia New Zealand Singapore Puerto Rico This expansion means Titan Security Keys are now available in 22 markets, including previously announced countries like Austria, Belgium, Canada, France, Germany, Italy, Japan, Spain, Switzerland, the UK, and the US. What is a Titan Security Key? A Titan Security Key is a small, physical device that you can use to verify your identity when you sign in to your Google Account. It’s like a second password that’s much harder for cybercriminals to steal. Titan Security Keys allow you to store your passkeys on a strong, purpose-built device that…
Read More
26Mar 2025 by Webmaster

RedCurl Shifts from Espionage to Ransomware with First-Ever QWCrypt Deployment

Actualités
The Russian-speaking hacking group called RedCurl has been linked to a ransomware campaign for the first time, marking a departure in the threat actor's tradecraft. The activity, observed by Romanian cybersecurity company Bitdefender, involves the deployment of a never-before-seen ransomware strain dubbed QWCrypt. RedCurl, also called Earth Kapre and Red Wolf, has a history of orchestrating
Read More
26Mar 2025 by Webmaster

EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware

Actualités
The threat actor known as EncryptHub exploited a recently-patched security vulnerability in Microsoft Windows as a zero-day to deliver a wide range of malware families, including backdoors and information stealers such as Rhadamanthys and StealC. "In this attack, the threat actor manipulates .msc files and the Multilingual User Interface Path (MUIPath) to download and execute malicious payload,
Read More
26Mar 2025 by Webmaster

Sparring in the Cyber Ring: Using Automated Pentesting to Build Resilience

Actualités
“A boxer derives the greatest advantage from his sparring partner…” — Epictetus, 50–135 AD Hands up. Chin tucked. Knees bent. The bell rings, and both boxers meet in the center and circle. Red throws out three jabs, feints a fourth, and—BANG—lands a right hand on Blue down the center. This wasn’t Blue’s first day and despite his solid defense in front of the mirror, he feels the pressure.
Read More
26Mar 2025 by Webmaster

Malicious npm Package Modifies Local ‘ethers’ Library to Launch Reverse Shell Attacks

Actualités
Cybersecurity researchers have discovered two malicious packages on the npm registry that are designed to infect another locally installed package, underscoring the continued evolution of software supply chain attacks targeting the open-source ecosystem. The packages in question are ethers-provider2 and ethers-providerz, with the former downloaded 73 times to date since it was published on
Read More