Recent iterations of Luma Stealer malware now utilize persistent scheduled tasks to download secondary payloads from Pastebin every 30 minutes, often resulting in dozens of concurrent tasks that increase system noise after initial data exfiltration. This behavior suggests attackers are either scraping missed information or transitioning system access to secondary groups for ransomware deployment. Meanwhile, a critical vulnerability in ServiceNow’s virtual agent stems from the use of hardcoded, universal credentials across all customer integrations, allowing unauthorized authentication as any user with the application enabled. Additionally, investigations into Starlink terminal failures in Iran reveal that GPS jamming is the primary cause of service disruption. Because terminals rely on GPS to calculate satellite angles, the interference prevents accurate antenna positioning. While a failover mode exists to use Starlink signals for positioning, current accuracy levels remain insufficient, highlighting the need for SpaceX to further develop its satellite constellation as a robust GPS alternative.
Sign in to continue reading, translating and more.
Continue
