BOCRA website




Malvertisers Using Google Ads to Target Users Searching for Popular Software

                                                     LATEST CYBER HACKS 


1Password detects “suspicious activity” in its internal Okta account

1Password, a password manager used by millions of people and more than 100,000 businesses, said it detected suspicious activity on a company account provided by Okta, the identity and authentication service that disclosed a breach on Friday.


A threat actor is selling access to Facebook and Instagram’s police portal

A threat actor is selling access to Facebook and Instagram’s Police Portal used by law enforcement agencies to request data relating to users under investigation.


Backdoor Implant on Hacked Cisco Devices Modified to Evade Detection

The backdoor implanted on Cisco devices by exploiting a pair of zero-day flaws in IOS XE software has been modified by the threat actor so as to escape visibility via previous fingerprinting methods.



Cisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices

Cisco has warned of a new zero-day flaw in IOS XE that has been actively exploited by an unknown threat actor to deploy a malicious Lua-based implant on susceptible devices.


New Admin Takeover Vulnerability Exposed in              Synology's DiskStation Manager

A medium-severity flaw has been discovered in Synology's DiskStation Manager (DSM) that could be exploited to decipher an administrator's password and remotely hijack the account.



Quasar RAT Employs DLL Sideloading to Stay Under the Radar

Quasar RAT, an open-source remote access trojan also known as CinaRAT or Yggdrasil, has been spotted leveraging a new Microsoft file as part of its DLL sideloading process to stealthily drop malicious payloads on compromised Windows systems.


The DarkGate Menace: Tracing the Vietnamese Connection

A recent report from WithSecure has highlighted a surge in DarkGate malware infection attempts, targeting its Managed Detection and Response customers, notably in the U.K, the U.S., and India. As further analysis was conducted, two critical insights emerged: a Vietnamese connection and an intricate web of interlinked malware campaigns.


DoNot Team's New Firebird Backdoor Hits Pakistan and Afghanistan

The threat actor known as DoNot Team has been linked to the use of a novel .NET-based backdoor called Firebird targeting a handful of victims in Pakistan and Afghanistan.

                               GENERAL NEWS


September saw a record 153% increase of ransomware attacks, says NCC Group

NCC Group released its Threat Pulse for September, which detailed a shocking increase of 153% in September for ransomware attacks. 


Tech spend to hit milestone as businesses react to AI security scare

Worldwide IT spending is expected to surge to $5.1 trillion in 2024, growing 8% year over year, analyst firm Gartner projected in a Wednesday report. This marks the first time IT spending is expected to surpass $5 trillion.