Malware & Threats

CISA Analyzes Malware Used in Barracuda ESG Attacks

Barracuda, Malware, Malware & Threats /

CISA Analyzes Malware Used in Barracuda ESG Attacks 31/07/2023 at 13:31 By Ionut Arghire CISA has shared analysis reports on three malware families obtained from an organization hacked via a recent Barracuda ESG vulnerability. The post CISA Analyzes Malware Used in Barracuda ESG Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek […]

React to this headline:

Loading spinner

CISA Analyzes Malware Used in Barracuda ESG Attacks Read More »

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks

Featured, Ivanti, Malware & Threats, Vulnerabilities, Zero-Day /

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks 31/07/2023 at 13:31 By Eduard Kovacs Ivanti EPMM customers have been warned of CVE-2023-35081, a second zero-day vulnerability that has been exploited in targeted attacks. The post Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks Read More »

Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins

Malware & Threats /

Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins 28/07/2023 at 17:47 By Ionut Arghire The first attempts to exploit CVE-2023-24489, a recent critical Citrix ShareFile remote code execution vulnerability, have been observed. The post Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins Read More »

In Other News: Military Emails Leaked, Google Restricts Internet Access, Chinese Spyware

email security, ICS/OT, In Other News, Malware & Threats /

In Other News: Military Emails Leaked, Google Restricts Internet Access, Chinese Spyware 21/07/2023 at 18:03 By Eduard Kovacs Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 17, 2023. The post In Other News: Military Emails Leaked, Google Restricts Internet Access,

React to this headline:

Loading spinner

In Other News: Military Emails Leaked, Google Restricts Internet Access, Chinese Spyware Read More »

Multiple DDoS Botnets Exploiting Recent Zyxel Vulnerability

botnet, Malware & Threats, Zyxel /

Multiple DDoS Botnets Exploiting Recent Zyxel Vulnerability 20/07/2023 at 21:18 By Ionut Arghire Multiple DDoS botnets have been observed targeting CVE-2023-28771, a Zyxel firewall vulnerability patched in April. The post Multiple DDoS Botnets Exploiting Recent Zyxel Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

Multiple DDoS Botnets Exploiting Recent Zyxel Vulnerability Read More »

Two Jira Plugin Vulnerabilities in Attacker Crosshairs

exploited, Jira, Malware & Threats /

Two Jira Plugin Vulnerabilities in Attacker Crosshairs 19/07/2023 at 16:52 By Ionut Arghire Attackers are exploiting two path traversal vulnerabilities in the Stagil navigation for Jira – Menus & Themes plugin. The post Two Jira Plugin Vulnerabilities in Attacker Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Two Jira Plugin Vulnerabilities in Attacker Crosshairs Read More »

US Gov Mercenary Spyware Clampdown Hits Cytrox, Intellexa

cytrox, Government, intellexa, Malware & Threats, nso group, Tracking & Law Enforcement /

US Gov Mercenary Spyware Clampdown Hits Cytrox, Intellexa 19/07/2023 at 02:02 By Ryan Naraine The two foreign companies are being sanctioned for “for trafficking in cyber exploits used to gain access to information systems.”  The post US Gov Mercenary Spyware Clampdown Hits Cytrox, Intellexa appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

US Gov Mercenary Spyware Clampdown Hits Cytrox, Intellexa Read More »

WordPress Sites Hacked via Critical Vulnerability in WooCommerce Payments Plugin

Malware & Threats /

WordPress Sites Hacked via Critical Vulnerability in WooCommerce Payments Plugin 18/07/2023 at 16:48 By Ionut Arghire Attackers have started exploiting CVE-2023-28121, a recent critical vulnerability in the WooCommerce Payments WordPress plugin. The post WordPress Sites Hacked via Critical Vulnerability in WooCommerce Payments Plugin appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

WordPress Sites Hacked via Critical Vulnerability in WooCommerce Payments Plugin Read More »

Netcraft Raises $100M, Hires New CEO for Global Expansion

Fraud & Identity Theft, Funding/M&A, Malware & Threats, Netcraft /

Netcraft Raises $100M, Hires New CEO for Global Expansion 18/07/2023 at 14:19 By Ryan Naraine The British company secures $100 million in funding and announced the hiring of a new chief executive to pursue global expansion plans. The post Netcraft Raises $100M, Hires New CEO for Global Expansion appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Netcraft Raises $100M, Hires New CEO for Global Expansion Read More »

In Other News: Security Firm Hit by Investor Lawsuit, Satellite Hacking, Cloud Attacks

cybercrime, Cybersecurity Funding, In Other News, Malware & Threats /

In Other News: Security Firm Hit by Investor Lawsuit, Satellite Hacking, Cloud Attacks 14/07/2023 at 17:03 By SecurityWeek News Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 10, 2023. The post In Other News: Security Firm Hit by Investor Lawsuit,

React to this headline:

Loading spinner

In Other News: Security Firm Hit by Investor Lawsuit, Satellite Hacking, Cloud Attacks Read More »

BlackLotus UEFI Bootkit Source Code Leaked on GitHub

BlackLotus, bootkit, leak, Malware & Threats, source code /

BlackLotus UEFI Bootkit Source Code Leaked on GitHub 13/07/2023 at 19:31 By Ionut Arghire The source code for the BlackLotus UEFI bootkit has been leaked on GitHub and an expert has issued a warning over the risks. The post BlackLotus UEFI Bootkit Source Code Leaked on GitHub appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

BlackLotus UEFI Bootkit Source Code Leaked on GitHub Read More »

APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure

exploit, Featured, ICS, ICS/OT, Malware & Threats, Rockwell Automation, Vulnerabilities /

APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure 13/07/2023 at 13:32 By Eduard Kovacs Two Rockwell Automation product vulnerabilities have been used for a new exploit by an APT group that could use it to target critical infrastructure. The post APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure appeared first on

React to this headline:

Loading spinner

APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure Read More »

In Other News: Healthcare Product Flaws, Free Email Security Testing, New Attack Techniques

email security, In Other News, Malware & Threats, Vulnerabilities /

In Other News: Healthcare Product Flaws, Free Email Security Testing, New Attack Techniques 07/07/2023 at 18:31 By SecurityWeek News Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 3, 2023. The post In Other News: Healthcare Product Flaws, Free Email Security

React to this headline:

Loading spinner

In Other News: Healthcare Product Flaws, Free Email Security Testing, New Attack Techniques Read More »

Iranian Cyberspies Target US-Based Think Tank With New macOS Malware

Iran, Mac malware, Malware & Threats /

Iranian Cyberspies Target US-Based Think Tank With New macOS Malware 07/07/2023 at 18:31 By Ionut Arghire In May 2023, Iran-linked cyberespionage group Charming Kitten targeted a US-based think tank with new macOS malware. The post Iranian Cyberspies Target US-Based Think Tank With New macOS Malware appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Iranian Cyberspies Target US-Based Think Tank With New macOS Malware Read More »

Two Apps Hosted on Google Play Caught Sending User Data to Chinese Servers

Malware & Threats, Mobile & Wireless /

Two Apps Hosted on Google Play Caught Sending User Data to Chinese Servers 07/07/2023 at 15:03 By Ionut Arghire Two applications hosted on Google Play, with over 1.5 million combined downloads, were caught sending user data to servers in China. The post Two Apps Hosted on Google Play Caught Sending User Data to Chinese Servers

React to this headline:

Loading spinner

Two Apps Hosted on Google Play Caught Sending User Data to Chinese Servers Read More »

Truebot Hackers Exploiting Netwrix Auditor Flaw: CISA, FBI Alert

Application Security, Bishop Fox, CVE-2022-31199, FBI, Malware & Threats, netwrix auditor, Ransomware /

Truebot Hackers Exploiting Netwrix Auditor Flaw: CISA, FBI Alert 06/07/2023 at 23:04 By Ryan Naraine Hackers linked to the Truebot malware are exploiting a year-old Netwrix Auditor flaw to break into organizations in the U.S. and Canada. The post Truebot Hackers Exploiting Netwrix Auditor Flaw: CISA, FBI Alert appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Truebot Hackers Exploiting Netwrix Auditor Flaw: CISA, FBI Alert Read More »

Submarine Cables at Risk of Nation-State Sabotage, Spying: Report

Malware & Threats, Risk Management, submarine, Water /

Submarine Cables at Risk of Nation-State Sabotage, Spying: Report 28/06/2023 at 15:04 By Ionut Arghire Recorded Future underlines threats to submarine telecommunication cables, such as the risk of intentional sabotage and spying by nation-state threat actors. The post Submarine Cables at Risk of Nation-State Sabotage, Spying: Report appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Submarine Cables at Risk of Nation-State Sabotage, Spying: Report Read More »

Anatsa Banking Trojan Delivered via Google Play Targets Android Users in US, Europe

Anatsa, Android, Android trojan, Malware & Threats, Mobile & Wireless /

Anatsa Banking Trojan Delivered via Google Play Targets Android Users in US, Europe 28/06/2023 at 12:22 By Ionut Arghire Malicious applications with over 30,000 installs in Google Play have infected Android devices with the Anatsa banking trojan. The post Anatsa Banking Trojan Delivered via Google Play Targets Android Users in US, Europe appeared first on

React to this headline:

Loading spinner

Anatsa Banking Trojan Delivered via Google Play Targets Android Users in US, Europe Read More »

CISA Says Critical Zyxel NAS Vulnerability Exploited in Attacks

Malware & Threats /

CISA Says Critical Zyxel NAS Vulnerability Exploited in Attacks 26/06/2023 at 14:47 By Eduard Kovacs CISA has warned users of Zyxel NAS products that the recently patched critical vulnerability CVE-2023-27992 has been exploited in attacks. The post CISA Says Critical Zyxel NAS Vulnerability Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

CISA Says Critical Zyxel NAS Vulnerability Exploited in Attacks Read More »

NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections

bootkit, firmware, Malware & Threats, NSA, UEFI, Vulnerabilities /

NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections 23/06/2023 at 20:58 By Ionut Arghire The National Security Agency (NSA) has released mitigation guidance to help organizations stave off BlackLotus UEFI bootkit infections. The post NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections Read More »

Scroll to Top