The Rise of RADAR and DISPOSSESSOR: A New Ransomware-as-a-Service
In April, a security researcher named Jim Walter from SentinelOne published an article detailing how some ransomware affiliates have begun collaborating to secure payment if deceived by previous...
View ArticleOyster Backdoor Gets Upgrade: Rhysida Ransomware Gang Uses SEO Poisoning in...
On July 10, 2024, an unnamed private school was attacked by the Rhysida ransomware group, utilizing a new version of the Oyster Backdoor, also known as Broomstick. This updated variant of Oyster was...
View ArticleCalibre eBook Software Exposed: Critical Security Vulnerabilities Discovered
Calibre, the popular cross-platform e-book management software, has three significant security vulnerabilities. These vulnerabilities, identified by researchers from STAR Labs SG Pte. Ltd., could...
View ArticleBeware DEV#POPPER: Evolving Malware Targets Developers Everywhere
In recent months, the world has encountered a new campaign by North Korean hackers. The DEV#POPPER campaign targets software developers and affects victims in South Korea, North America, Europe, and...
View ArticleMint Stealer: New MaaS Malware Threatens Confidential Data
Experts from Cyfirma have released a report on the malware Mint Stealer, which operates under the “Malware-as-a-Service” (MaaS) model. This malware specializes in stealing confidential data and employs...
View ArticleMalcolm: A Comprehensive Network Traffic Analysis Tool
In today’s complex cybersecurity landscape, effective network traffic analysis is crucial for detecting and mitigating potential threats. Malcolm, a powerful network traffic analysis tool suite, stands...
View ArticleCVE-2024-38856: Critical Apache OFBiz Flaw Opens Door to Unauthorized Code...
A newly identified vulnerability in Apache OFBiz, the widely adopted open-source enterprise resource planning (ERP) platform, has prompted urgent security advisories due to the potential for...
View ArticleCVE-2024-38100: Leaked Wallpaper Exploit Exposes Windows Users to Privilege...
In a recent security bulletin, Microsoft disclosed a critical vulnerability in Windows File Explorer, identified as CVE-2024-38100, with a CVSS score of 7.8. This flaw, discovered by Andrea Pierini...
View ArticleCVE-2024-36268: Apache InLong Vulnerability Leaves Systems Open to Remote...
The Apache InLong project, a popular data integration framework widely used for handling large-scale data streams, has issued a security advisory regarding a critical vulnerability discovered in its...
View ArticleRoundcube Webmail Releases Security Updates to Patch Multiple Vulnerabilities
The development team behind Roundcube, the popular open-source webmail client, has announced the release of significant security updates. Yesterday, versions 1.6.8 and 1.5.8 were made available,...
View ArticleLinux Kernel 6.9 Reaches End of Life, Users Urged to Upgrade for Continued...
The Linux Kernel 6.9 series, a non-long-term support (LTS) version released in May 2024, has officially reached its end of life. This means that users who have not yet upgraded will no longer...
View ArticleCryptonator Seized: US and German Authorities Bust Crypto Wallet for Illicit...
The United States Department of Justice has charged Roman Pikulev with creating and operating the unlicensed cryptocurrency exchange Cryptonator, through which over $235 million in illegal funds were...
View ArticleChinese Hackers StormBamboo Target ISP to Deliver Malware via Updates
According to a new report from Volexity, in mid-2023, the Chinese group StormBamboo (aka Evasive Panda) infiltrated an ISP’s systems to disseminate malicious software updates among the company’s...
View ArticleCloudflare Urged to Rethink Abuse Handling Amid Spamhaus Criticism
Cloudflare, renowned for its content delivery network (CDN) services, is facing criticism regarding its internet abuse management policies. Spamhaus has voiced concerns over Cloudflare’s approach to...
View ArticleSecureserver.net Domain Abused in Widespread Banking Trojan Attacks
A new wave of banking trojans is exploiting the secureserver.net domain to target Spanish and Portuguese-speaking regions worldwide, including Latin America and Europe. These malicious campaigns,...
View ArticleNorth Korean Hackers Target Windows Users with Malicious NPM Packages
On July 7th of this year, a user of the npm developer repository with the nickname “nagasiren978” published two malicious packages: “harthat-hash” and “harthat-api,” which contained code that installed...
View ArticleGovernment Hit by Multi-Malware Cyberattack via Cloudflare Service
A sophisticated cyberattack targeting the government sector has been uncovered, utilizing a quartet of malicious software – XWorm, AsyncRAT, VenomRAT, and PureLogs Stealer – and exploiting Cloudflare’s...
View ArticleCVE-2024-36971: Zero-Day Kernel Flaw Exploited in Targeted Attacks Against...
Google’s latest Android security updates have revealed a critical zero-day vulnerability actively exploited in targeted attacks. The flaw, designated CVE-2024-36971, resides within the Linux kernel’s...
View ArticlePimax VR Security Breach: Hackers Could Exploit CVE-2024-41889 to Take Control
In a recent security advisory, JPCERT/CC has highlighted a significant vulnerability affecting Pimax Play and PiTool, two critical components of the Pimax virtual reality (VR) ecosystem. This...
View ArticleCVE-2024-6915 (CVSS 9.3): JFrog Artifactory Flaw Exposes Software Supply...
JFrog, a leading provider of software artifact management solutions, has issued a critical security advisory for its Artifactory platform. The vulnerability, identified as CVE-2024-6915 (CVSS 9.3),...
View Article