Malware & Threats

Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations 

APT28, espionage, Malware, Malware & Threats, Microsoft, Nation-State, Russia /

Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations  2024-04-23 at 17:16 By Ionut Arghire Russia-linked APT28 deploys the GooseEgg post-exploitation tool against numerous US and European organizations. The post Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to […]

React to this headline:

Loading spinner

Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations  Read More »

Thousands of Palo Alto Firewalls Potentially Impacted by Exploited Vulnerability 

exploited, Malware & Threats, Palo Alto Networks /

Thousands of Palo Alto Firewalls Potentially Impacted by Exploited Vulnerability  2024-04-22 at 15:16 By Ionut Arghire Shadowserver has identified roughly 6,000 internet-accessible Palo Alto Networks firewalls potentially vulnerable to CVE-2024-3400. The post Thousands of Palo Alto Firewalls Potentially Impacted by Exploited Vulnerability  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Thousands of Palo Alto Firewalls Potentially Impacted by Exploited Vulnerability  Read More »

Threat-Intelligence Startup VulnCheck Closes $8M Seed Financing

Funding/M&A, Malware & Threats, seed-stage, Sorenson Ventures, VulnCheck /

Threat-Intelligence Startup VulnCheck Closes $8M Seed Financing 2024-04-19 at 18:01 By SecurityWeek News VulnCheck banks $8 million in early stage capital to build ‘exploit intelligence’ technologies and services. The post Threat-Intelligence Startup VulnCheck Closes $8M Seed Financing appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

Threat-Intelligence Startup VulnCheck Closes $8M Seed Financing Read More »

In Other News: OSS Backdooring Attempts, Botnet Operator Charged, Automotive Firm Attack

In Other News, Malware & Threats /

In Other News: OSS Backdooring Attempts, Botnet Operator Charged, Automotive Firm Attack 2024-04-19 at 17:01 By SecurityWeek News Noteworthy stories that might have slipped under the radar: OpenSSF and OpenJS incidents similar to XZ backdoor, Moldovan botnet operator charged, US automotive company targeted by FIN7. The post In Other News: OSS Backdooring Attempts, Botnet Operator

React to this headline:

Loading spinner

In Other News: OSS Backdooring Attempts, Botnet Operator Charged, Automotive Firm Attack Read More »

OpenMetadata Vulnerabilities Exploited to Abuse Kubernetes Clusters for Cryptomining  

exploited, Kubernetes, Malware & Threats, OpenMetadata /

OpenMetadata Vulnerabilities Exploited to Abuse Kubernetes Clusters for Cryptomining   2024-04-19 at 13:01 By Eduard Kovacs Microsoft warns that several OpenMetadata vulnerabilities are being exploited to deploy cryptomining malware to Kubernetes environments. The post OpenMetadata Vulnerabilities Exploited to Abuse Kubernetes Clusters for Cryptomining   appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

OpenMetadata Vulnerabilities Exploited to Abuse Kubernetes Clusters for Cryptomining   Read More »

Kapeka: A New Backdoor in Sandworm’s Arsenal of Aggression

Malware & Threats, Sandworm /

Kapeka: A New Backdoor in Sandworm’s Arsenal of Aggression 2024-04-17 at 23:16 By Kevin Townsend Kapeka is a new backdoor that may be a new addition to Russia-link Sandworm’s malware arsenal and possibly a successor to GreyEnergy. The post Kapeka: A New Backdoor in Sandworm’s Arsenal of Aggression appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Kapeka: A New Backdoor in Sandworm’s Arsenal of Aggression Read More »

Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks

brute-force, Malware & Threats, VPN /

Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks 2024-04-17 at 17:01 By Ionut Arghire Cisco has observed an increase in brute-force attacks targeting web application authentication, VPNs, and SSH services. The post Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks Read More »

Exploitation of Palo Alto Firewall Vulnerability Picking Up After PoC Release

exploited, Malware & Threats, Palo Alto Networks /

Exploitation of Palo Alto Firewall Vulnerability Picking Up After PoC Release 2024-04-17 at 14:31 By Eduard Kovacs Palo Alto Networks firewall vulnerability CVE-2024-3400 increasingly exploited after PoC code has been released.  The post Exploitation of Palo Alto Firewall Vulnerability Picking Up After PoC Release appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Exploitation of Palo Alto Firewall Vulnerability Picking Up After PoC Release Read More »

Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge

exploited, Featured, Malware & Threats, Nation-State, Palo Alto Networks, Zero-Day /

Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge 2024-04-15 at 14:00 By Eduard Kovacs Palo Alto Networks has started releasing hotfixes for the firewall zero-day CVE-2024-3400, which some have linked to North Korea’s Lazarus.  The post Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge appeared

React to this headline:

Loading spinner

Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge Read More »

State-Sponsored Hackers Exploit Zero-Day to Backdoor Palo Alto Networks Firewalls

exploited, firewall, Malware & Threats, Palo Alto Networks /

State-Sponsored Hackers Exploit Zero-Day to Backdoor Palo Alto Networks Firewalls 2024-04-12 at 23:46 By Ionut Arghire A state-sponsored threat actor has been exploiting a zero-day in Palo Alto Networks firewalls for the past two weeks. The post State-Sponsored Hackers Exploit Zero-Day to Backdoor Palo Alto Networks Firewalls appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

State-Sponsored Hackers Exploit Zero-Day to Backdoor Palo Alto Networks Firewalls Read More »

Threat Actors Manipulate GitHub Search to Deliver Malware

GitHub, Malware, Malware & Threats /

Threat Actors Manipulate GitHub Search to Deliver Malware 2024-04-12 at 14:31 By Ionut Arghire Checkmarx warns of a new attack relying on GitHub search manipulation to deliver malicious code. The post Threat Actors Manipulate GitHub Search to Deliver Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Threat Actors Manipulate GitHub Search to Deliver Malware Read More »

CISA Releases Malware Next-Gen Analysis System for Public Use

CISA, Government, Malware & Threats, Malware Next-Gen /

CISA Releases Malware Next-Gen Analysis System for Public Use 2024-04-10 at 23:17 By Ryan Naraine CISA’s Malware Next-Gen system is now available for any organization to submit malware samples and other suspicious artifacts for analysis. The post CISA Releases Malware Next-Gen Analysis System for Public Use appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

CISA Releases Malware Next-Gen Analysis System for Public Use Read More »

Microsoft Patches Two Zero-Days Exploited for Malware Delivery

exploited, Malware & Threats, Vulnerabilities, Zero-Day /

Microsoft Patches Two Zero-Days Exploited for Malware Delivery 2024-04-10 at 13:27 By Eduard Kovacs Microsoft patches CVE-2024-29988 and CVE-2024-26234, two zero-day vulnerabilities exploited by threat actors to deliver malware. The post Microsoft Patches Two Zero-Days Exploited for Malware Delivery appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Microsoft Patches Two Zero-Days Exploited for Malware Delivery Read More »

Patch Tuesday: Code Execution Flaws in Multiple Adobe Software Products

Adobe Commerce, magento, Malware & Threats, Patch Tuesday, Vulnerabilities /

Patch Tuesday: Code Execution Flaws in Multiple Adobe Software Products 2024-04-09 at 20:47 By Ryan Naraine Adobe calls attention to a pair of code execution bugs in Adobe Commerce and Magento Open Source, a product used to manage online stories. The post Patch Tuesday: Code Execution Flaws in Multiple Adobe Software Products appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Patch Tuesday: Code Execution Flaws in Multiple Adobe Software Products Read More »

Magento Vulnerability Exploited to Deploy Persistent Backdoor

backdoor, ecommerce, Malware & Threats /

Magento Vulnerability Exploited to Deploy Persistent Backdoor 2024-04-05 at 14:16 By Ionut Arghire Attackers are exploiting a recent Magento vulnerability to deploy a persistent backdoor on ecommerce websites. The post Magento Vulnerability Exploited to Deploy Persistent Backdoor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

Magento Vulnerability Exploited to Deploy Persistent Backdoor Read More »

‘Vultur’ Android Malware Gets Extensive Device Interaction Capabilities

Android, Malware & Threats, Mobile & Wireless, Vultur /

‘Vultur’ Android Malware Gets Extensive Device Interaction Capabilities 2024-04-01 at 19:31 By Ionut Arghire NCC Group researchers warn that the Android banking malware ‘Vultur’ has been updated with device interaction and file tampering capabilities. The post ‘Vultur’ Android Malware Gets Extensive Device Interaction Capabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

‘Vultur’ Android Malware Gets Extensive Device Interaction Capabilities Read More »

‘WallEscape’ Linux Vulnerability Leaks User Passwords

CVE-2024-28085, Linux, Malware & Threats, Ubuntu, Vulnerabilities, WallEscape /

‘WallEscape’ Linux Vulnerability Leaks User Passwords 2024-04-01 at 19:31 By Ionut Arghire A vulnerability in util-linux, a core utilities package in Linux systems, allows attackers to leak user passwords and modify the clipboard. The post ‘WallEscape’ Linux Vulnerability Leaks User Passwords appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

‘WallEscape’ Linux Vulnerability Leaks User Passwords Read More »

In Other News: Airline Privacy Review, SEC’s SolarWinds Hack Probe, Apple MFA Bombing

In Other News, Malware & Threats /

In Other News: Airline Privacy Review, SEC’s SolarWinds Hack Probe, Apple MFA Bombing 2024-03-29 at 16:46 By SecurityWeek News Noteworthy stories that might have slipped under the radar: US government conducting airline privacy review, SEC’s overreaching SolarWinds hack probe, MFA bombing of Apple users. The post In Other News: Airline Privacy Review, SEC’s SolarWinds Hack

React to this headline:

Loading spinner

In Other News: Airline Privacy Review, SEC’s SolarWinds Hack Probe, Apple MFA Bombing Read More »

Malware Upload Attack Hits PyPI Repository

Checkmarx, Malware & Threats, PyPI, Supply Chain Security /

Malware Upload Attack Hits PyPI Repository 2024-03-28 at 20:31 By Ryan Naraine Maintainers of the Python Package Index (PyPI) repository were forced to suspend new project creation and new user registration to mitigate a malware upload campaign. The post Malware Upload Attack Hits PyPI Repository appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Malware Upload Attack Hits PyPI Repository Read More »

Cyberespionage Campaign Targets Government, Energy Entities in India

APT, Cyberwarfare, India, Malware & Threats, Nation-State, phishing, spear-phishing /

Cyberespionage Campaign Targets Government, Energy Entities in India 2024-03-28 at 17:17 By Ionut Arghire Threat intelligence firm EclecticIQ documents the delivery of malware phishing lures to government and private energy organizations in India. The post Cyberespionage Campaign Targets Government, Energy Entities in India appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Cyberespionage Campaign Targets Government, Energy Entities in India Read More »

Scroll to Top