MySQL Servers, Docker Hosts Infected With DDoS Malware 14/11/2023 at 19:47 By Ionut Arghire Researchers warn attackers are targeting MySQL servers and Docker hosts to plant malware capable of launching distributed DDoS attacks. The post MySQL Servers, Docker Hosts Infected With DDoS Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS […]
MySQL Servers, Docker Hosts Infected With DDoS Malware Read More »
Google Suing Cybercriminals Who Delivered Malware via Fake Bard Downloads 14/11/2023 at 16:16 By Eduard Kovacs Google files a lawsuit against cybercriminals who delivered account-hijacking malware by offering fake Bard AI downloads. The post Google Suing Cybercriminals Who Delivered Malware via Fake Bard Downloads appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
Google Suing Cybercriminals Who Delivered Malware via Fake Bard Downloads Read More »
Tidal Cyber Raises $5 Million for Threat-Informed Defense Platform 09/11/2023 at 19:47 By Ionut Arghire The Washington, DC startup is building a threat-informed defense platform that helps organizations automate detection and response work. The post Tidal Cyber Raises $5 Million for Threat-Informed Defense Platform appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
Tidal Cyber Raises $5 Million for Threat-Informed Defense Platform Read More »
‘BlazeStealer’ Malware Delivered to Python Developers Looking for Obfuscation Tools 09/11/2023 at 17:46 By Ionut Arghire Checkmarx uncovers a malicious campaign targeting Python developers with malware that takes over their systems. The post ‘BlazeStealer’ Malware Delivered to Python Developers Looking for Obfuscation Tools appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS
‘BlazeStealer’ Malware Delivered to Python Developers Looking for Obfuscation Tools Read More »
CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild 09/11/2023 at 13:32 By Ionut Arghire CISA says an SLP vulnerability allowing for a DoS amplification factor of 2,000 is being exploited in attacks. The post CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild appeared first on SecurityWeek. This
CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild Read More »
Russian Hackers Used Novel OT Attack to Disrupt Ukrainian Power Amid Mass Missile Strikes 09/11/2023 at 12:16 By Ryan Naraine Mandiant says Russia’s Sandworm hackers used a novel OT attack to cause power outages that coincided with mass missile strikes on critical infrastructure across Ukraine. The post Russian Hackers Used Novel OT Attack to Disrupt
Dropper Service Bypassing Android Security Restrictions to Install Malware 08/11/2023 at 14:01 By Ionut Arghire ThreatFabric warns of a dropper service bypassing recent Android security restrictions to install spyware and banking trojans. The post Dropper Service Bypassing Android Security Restrictions to Install Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS
Dropper Service Bypassing Android Security Restrictions to Install Malware Read More »
New MacOS Malware Linked to North Korean Hackers 07/11/2023 at 18:04 By Kevin Townsend New macOS malware, tracked by Jamf as ObjCShellz, is likely being used by North Korean hackers to target crypto exchanges The post New MacOS Malware Linked to North Korean Hackers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
New MacOS Malware Linked to North Korean Hackers Read More »
Iranian APT Targets Israeli Education, Tech Sectors With New Wipers 06/11/2023 at 15:01 By Ionut Arghire The Iran-linked APT Agrius has been targeting higher education and technology organizations in Israel with new wipers. The post Iranian APT Targets Israeli Education, Tech Sectors With New Wipers appeared first on SecurityWeek. This article is an excerpt from
Iranian APT Targets Israeli Education, Tech Sectors With New Wipers Read More »
Apache ActiveMQ Vulnerability Exploited as Zero-Day 04/11/2023 at 19:31 By Eduard Kovacs The recently patched Apache ActiveMQ vulnerability tracked as CVE-2023-46604 has been exploited as a zero-day since at least October 10. The post Apache ActiveMQ Vulnerability Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original
Apache ActiveMQ Vulnerability Exploited as Zero-Day Read More »
North Korean Hackers Use New ‘KandyKorn’ macOS Malware in Attacks 04/11/2023 at 19:31 By Ionut Arghire Security researchers uncover new macOS and Windows malware associated with the North Korea-linked Lazarus Group. The post North Korean Hackers Use New ‘KandyKorn’ macOS Malware in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS
North Korean Hackers Use New ‘KandyKorn’ macOS Malware in Attacks Read More »
Mozi Botnet Likely Killed by Its Creators 01/11/2023 at 20:03 By Eduard Kovacs The recent shutdown of the Mozi botnet is believed to have been carried out by its creators, possibly forced by Chinese authorities. The post Mozi Botnet Likely Killed by Its Creators appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
Mozi Botnet Likely Killed by Its Creators Read More »
Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks 01/11/2023 at 17:31 By Ionut Arghire Check Point reports that an Iranian APT has been observed using a new malware framework in targeted attacks in the Middle East. The post Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks appeared first on SecurityWeek. This article is
Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks Read More »
Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway 01/11/2023 at 17:31 By Ionut Arghire Multiple threat actors are exploiting CVE-2023-4966, aka Citrix Bleed, a critical vulnerability in NetScaler ADC and Gateway. The post Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway Read More »
Malicious NuGet Packages Abuse MSBuild Integrations for Code Execution 01/11/2023 at 16:01 By Ionut Arghire Threat actors are constantly publishing malicious NuGet packages to automatically execute code on developers’ machines. The post Malicious NuGet Packages Abuse MSBuild Integrations for Code Execution appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View
Malicious NuGet Packages Abuse MSBuild Integrations for Code Execution Read More »
Attackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on Slack 30/10/2023 at 16:46 By Ionut Arghire Researchers document the Wiki-Slack attack, a new technique that uses modified Wikipedia pages to target end users on Slack. The post Attackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on Slack appeared first on SecurityWeek.
Attackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on Slack Read More »
Advanced ‘StripedFly’ Malware With 1 Million Infections Shows Similarities to NSA-Linked Tools 27/10/2023 at 17:47 By Ionut Arghire The StripedFly malware has APT-like capabilities, but remained unnoticed for five years, posing as a cryptocurrency miner. The post Advanced ‘StripedFly’ Malware With 1 Million Infections Shows Similarities to NSA-Linked Tools appeared first on SecurityWeek. This article
‘YoroTrooper’ Espionage Group Linked to Kazakhstan 25/10/2023 at 23:46 By Ionut Arghire Cisco links the espionage-focused ‘YoroTrooper’ threat actor to Kazakhstan. The post ‘YoroTrooper’ Espionage Group Linked to Kazakhstan appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
‘YoroTrooper’ Espionage Group Linked to Kazakhstan Read More »
Apple Ships Major iOS, macOS Security Updates 25/10/2023 at 23:01 By Ryan Naraine Apple patches dozens of serious security flaws in its macOS and iOS platforms, warning that hackers could launch code execution exploits. The post Apple Ships Major iOS, macOS Security Updates appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS
Apple Ships Major iOS, macOS Security Updates Read More »
Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day 25/10/2023 at 19:17 By Ionut Arghire Russian APT Winter Vivern exploits a zero-day in the Roundcube webmail server in attacks targeting European governments. The post Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Russian Hackers Caught Exploiting Roundcube Webmail Zero-Day Read More »