Malware & Threats

Authorities Seize Control of RagnarLocker Ransomware Dark Web Site

cybercrime, Europol, Malware & Threats, RagnarLocker, Ransomware /

Authorities Seize Control of RagnarLocker Ransomware Dark Web Site 20/10/2023 at 18:31 By Ionut Arghire The RagnarLocker ransomware group’s dark web leak site has been seized in a coordinated law enforcement operation. The post Authorities Seize Control of RagnarLocker Ransomware Dark Web Site appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS […]

React to this headline:

Loading spinner

Authorities Seize Control of RagnarLocker Ransomware Dark Web Site Read More »

Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000

Cisco, exploited, Malware & Threats, Vulnerabilities /

Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 19/10/2023 at 14:01 By Eduard Kovacs The number of Cisco devices hacked via the CVE-2023-20198 zero-day has reached 40,000, including many in the US. The post Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 Read More »

Three Months After Patch, Gov-Backed Actors Exploiting WinRAR Flaw

China, CVE-2023-38831, cybercrime, Malware & Threats, Nation-State, Russia, Sandworm, Vulnerabilities, WinRAR /

Three Months After Patch, Gov-Backed Actors Exploiting WinRAR Flaw 18/10/2023 at 20:55 By Ryan Naraine Google says it is still catching government-backed groups linked to China and Russia launching WinRAR exploits in targeted attacks. The post Three Months After Patch, Gov-Backed Actors Exploiting WinRAR Flaw appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Three Months After Patch, Gov-Backed Actors Exploiting WinRAR Flaw Read More »

Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability

Cisco, Featured, Malware & Threats, Zero-Day /

Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability 18/10/2023 at 14:01 By Eduard Kovacs Tens of thousands of Cisco devices have reportedly been hacked via the exploitation of the zero-day vulnerability CVE-2023-20198. The post Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability Read More »

Signal Pours Cold Water on Zero-Day Exploit Rumors

Encryption, Lockdown Mode, Malware & Threats, Privacy, Signal, Vulnerabilities, WhatsApp /

Signal Pours Cold Water on Zero-Day Exploit Rumors 16/10/2023 at 17:47 By Ryan Naraine Privacy-focused messaging firm Signal is pouring cold water on widespread rumors of a zero-day exploit in its popular encrypted chat app. The post Signal Pours Cold Water on Zero-Day Exploit Rumors appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Signal Pours Cold Water on Zero-Day Exploit Rumors Read More »

Spyware Caught Masquerading as Israeli Rocket Alert Applications

Hamas, Israel, Malware & Threats, spyware /

Spyware Caught Masquerading as Israeli Rocket Alert Applications 16/10/2023 at 13:32 By Ionut Arghire A threat actor targets Israelis with spyware masquerading as an Android application for receiving rocket alerts. The post Spyware Caught Masquerading as Israeli Rocket Alert Applications appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Spyware Caught Masquerading as Israeli Rocket Alert Applications Read More »

SEC Investigating Progress Software Over MOVEit Hack

Data Breaches, Malware & Threats, MOVEit, Progress Software, Ransomware, SEC, Vulnerabilities, WS_FTP /

SEC Investigating Progress Software Over MOVEit Hack 12/10/2023 at 20:16 By Ionut Arghire Progress Software confirms the SEC has launched its own investigation into costly ransomware zero-days in the MOVEit file transfer software. The post SEC Investigating Progress Software Over MOVEit Hack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

SEC Investigating Progress Software Over MOVEit Hack Read More »

Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin

backdoor, Malware & Threats, WordPress /

Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin 12/10/2023 at 17:50 By Ionut Arghire A backdoor deployed on a compromised WordPress website poses as a legitimate plugin to hide its presence. The post Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin Read More »

Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business

Application Security, CVE-2023-36563, CVE-2023-41763, CVE-2023-44487, Malware & Threats, Microsoft, Patch Tuesday, Vulnerabilities /

Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business 10/10/2023 at 21:32 By Ryan Naraine Microsoft patches more than 100 vulnerabilities across the Windows ecosystem and warned that three are already being exploited in the wild. The post Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business Read More »

Patch Tuesday: Code Execution Flaws in Adobe Commerce, Photoshop

Adobe, CVE-2023-26370, Incident Response, magento, Malware & Threats, Patch Tuesday, Vulnerabilities /

Patch Tuesday: Code Execution Flaws in Adobe Commerce, Photoshop 10/10/2023 at 20:17 By Ryan Naraine Adobe Commerce customers exposed to code execution, privilege escalation, arbitrary file system read, and security feature bypass attacks. The post Patch Tuesday: Code Execution Flaws in Adobe Commerce, Photoshop appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Patch Tuesday: Code Execution Flaws in Adobe Commerce, Photoshop Read More »

Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal

botnet, exploit, Malware & Threats, Mirai /

Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal 10/10/2023 at 19:07 By Ionut Arghire A Mirai botnet variant tracked as IZ1H9 has updated its arsenal with 13 exploits targeting various routers, IP cameras, and other IoT devices. The post Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal Read More »

Magecart Web Skimmer Hides in 404 Error Pages

Magecart, Malware & Threats, web skimmer /

Magecart Web Skimmer Hides in 404 Error Pages 10/10/2023 at 15:37 By Ionut Arghire A newly identified Magecart web skimming campaign is tampering with ‘404’ error pages to hide malicious code. The post Magecart Web Skimmer Hides in 404 Error Pages appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Magecart Web Skimmer Hides in 404 Error Pages Read More »

Recently Patched TagDiv Plugin Flaw Exploited to Hack Thousands of WordPress Sites

Malware & Threats, WordPress /

Recently Patched TagDiv Plugin Flaw Exploited to Hack Thousands of WordPress Sites 09/10/2023 at 19:16 By Eduard Kovacs Recently patched TagDiv Composer plugin vulnerability exploited to hack thousands of WordPress sites as part of the Balada Injector campaign. The post Recently Patched TagDiv Plugin Flaw Exploited to Hack Thousands of WordPress Sites appeared first on

React to this headline:

Loading spinner

Recently Patched TagDiv Plugin Flaw Exploited to Hack Thousands of WordPress Sites Read More »

Credential Harvesting Campaign Targets Unpatched NetScaler Instances

Malware & Threats /

Credential Harvesting Campaign Targets Unpatched NetScaler Instances 09/10/2023 at 17:47 By Ionut Arghire Threat actors are targeting Citrix NetScaler instances unpatched against CVE-2023-3519 to steal user credentials. The post Credential Harvesting Campaign Targets Unpatched NetScaler Instances appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Credential Harvesting Campaign Targets Unpatched NetScaler Instances Read More »

Android Devices With Backdoored Firmware Found in US Schools

Android, backdoor, BadBox, cybercrime, Malware & Threats, Mobile & Wireless, Triada /

Android Devices With Backdoored Firmware Found in US Schools 06/10/2023 at 18:03 By Ionut Arghire A global cybercriminal operation called BadBox has infected the firmware of more than 70,000 Android smartphones, CTV boxes, and tablets with the Triada malware. The post Android Devices With Backdoored Firmware Found in US Schools appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Android Devices With Backdoored Firmware Found in US Schools Read More »

Qakbot Hackers Continue to Push Malware After Takedown Attempt

Malware, Malware & Threats, Qakbot /

Qakbot Hackers Continue to Push Malware After Takedown Attempt 05/10/2023 at 15:31 By Eduard Kovacs Qakbot cybercriminals continue to push malware, which shows they are still operational after the recent takedown attempt. The post Qakbot Hackers Continue to Push Malware After Takedown Attempt appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Qakbot Hackers Continue to Push Malware After Takedown Attempt Read More »

Hundreds Download Malicious NPM Package Capable of Delivering Rootkit

Malware & Threats, NPM, rootkit /

Hundreds Download Malicious NPM Package Capable of Delivering Rootkit 05/10/2023 at 14:01 By Ionut Arghire Threat actor uses typosquatting to trick hundreds of users into downloading a malicious NPM package that delivers the r77 rootkit. The post Hundreds Download Malicious NPM Package Capable of Delivering Rootkit appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Hundreds Download Malicious NPM Package Capable of Delivering Rootkit Read More »

Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day

apple, iOS, iOS 17.0.3, Malware & Threats, Mobile & Wireless, Nation-State, Vulnerabilities, Zero-Day /

Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day 04/10/2023 at 22:16 By Ryan Naraine Apple’s cat-and-mouse struggles with zero-day exploits on its flagship iOS platform is showing no signs of slowing down. The post Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day Read More »

Atlassian Ships Urgent Patch for Exploited Confluence Zero-Day

Application Security, Atlassian, Confluence, Malware & Threats, Vulnerabilities, Zero-Day /

Atlassian Ships Urgent Patch for Exploited Confluence Zero-Day 04/10/2023 at 20:16 By Ryan Naraine Atlassian confirms that “a handful of customers” were hit by exploits targeting a remotely exploitable flaw in its Confluence Data Center and Server products. The post Atlassian Ships Urgent Patch for Exploited Confluence Zero-Day appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Atlassian Ships Urgent Patch for Exploited Confluence Zero-Day Read More »

Dozens of Malicious NPM Packages Steal User, System Data

Malware & Threats, NPM /

Dozens of Malicious NPM Packages Steal User, System Data 03/10/2023 at 15:48 By Ionut Arghire Fortinet warns of multiple malicious NPM packages that include install scripts designed to steal sensitive information. The post Dozens of Malicious NPM Packages Steal User, System Data appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Dozens of Malicious NPM Packages Steal User, System Data Read More »

Scroll to Top