Cybercriminals are impersonating CrowdStrike recruiters to distribute cryptominer malware to job seekers. The phishing scam tricks victims into downloading a malicious app that then mines Monero cryptocurrency. The malware employs evasion tactics including limiting CPU usage and using startup scripts to stay hidden. Fake job scams are rising, and CrowdStrike advises job seekers to verify offers through official channels and install endpoint protection to flag threats.
CISA Warns of Critical VMware vCenter RCE Vulnerability Now Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting Broadcom’s VMware vCenter Server to its Known Exploited Vulnerabilities (KEV) catalog. This
