BOCRA website




Cybercriminals Turn to Android Loaders on Dark Web to Evade Google Play Security

                                                     LATEST CYBER HACKS 


Samsung employees unwittingly leaked company secret data by using ChatGPT

Samsung employees have shared internal documents, including meeting notes and source code, with the popular chatbot service ChatGPT. ChatGPT uses data provided by the users to train itself and build its experience, with the risk that this data can be available to other users that will query the popular chatbot.


KFC, Pizza Hut owner discloses data breach after ransomware attack

Yum! Brands, the brand owner of the KFC, Pizza Hut, and Taco Bell fast food chains, is now sending data breach notification letters to an undisclosed number of individuals whose personal information was stolen in a January 13 ransomware attack.


SD Worx shuts down UK payroll, HR services after cyberattack

Belgian HR and payroll giant SD Worx has suffered a cyberattack causing them to shut down all IT systems for its UK and Ireland services.



Newly Discovered "By-Design" Flaw in Microsoft Azure Could Expose Storage Accounts to Hackers

A "by-design flaw" uncovered in Microsoft Azure could be exploited by attackers to gain access to storage accounts, move laterally in the environment, and even execute remote code.


Mastodon Vulnerability Exposes Sensitive Information: Data Leak Alert

Mastodon, a social network based on software for servers of the same name, has been found to have a vulnerability that could have allowed attackers to read individual pieces of information. The problem was caused by inadequate filtering of the data transferred during LDAP authentication. The vulnerability allows attackers to smuggle in an LDAP database query, which can be used to read information about users bit by bit. Despite the vulnerability, it was not possible for attackers to get password hashes.



Cryptocurrency Stealer Malware Distributed via 13 NuGet Packages

Cybersecurity researchers have detailed the inner workings of the cryptocurrency stealer malware that was distributed via 13 malicious NuGet packages as part of a supply chain attack targeting .NET developers.


Hackers Hide Backdoors Behind Malicious Self-Extracting Archives

Threat actors are adding malicious functionality to WinRAR self-extracting (SFX) archives to install persistent backdoors in target systems without detection. These SFX files contain decoy files that can launch PowerShell, command prompt, and task manager with system privileges.


FusionCore - An Emerging Malware-as-a-Service Group in Europe

Malicious activities associated with a new and upcoming cybercrime group, dubbed FusionCore, have come to the notice of researchers. Active since November 2022, the threat actor group is specialized in offering Malware-as-a-Service (MaaS) and other hacking services. 

                               GENERAL NEWS


Top 10 Cybersecurity Trends for 2023: From Zero Trust to Cyber Insurance

As technology advances, cyberattacks are becoming more sophisticated. With the increasing use of technology in our daily lives, cybercrime is on the rise, as evidenced by the fact that cyberattacks caused 92% of all data breaches in the first quarter of 2022. Staying current with cybersecurity trends and laws is crucial to combat these threats, which can significantly impact business development.


Protecting your business with Wazuh: The open source security platform

Today, businesses face a variety of security challenges like cyber attacks, compliance requirements, and endpoint security administration. The threat landscape constantly evolves, and it can be overwhelming for businesses to keep up with the latest security trends. Security teams use processes and security solutions to curb these challenges.