Malware & Threats

Over 380k Hosts Still Referencing Malicious Polyfill Domain: Censys

Malware & Threats, Polyfill /

Over 380k Hosts Still Referencing Malicious Polyfill Domain: Censys 2024-07-03 at 17:01 By Ionut Arghire Censys has discovered more than 380,000 hosts, including major platforms, still referencing the malicious polyfill.io domain. The post Over 380k Hosts Still Referencing Malicious Polyfill Domain: Censys appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed […]

React to this headline:

Loading spinner

Over 380k Hosts Still Referencing Malicious Polyfill Domain: Censys Read More »

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies

Cisco, cyberespionage, exploited, Featured, Malware & Threats, Velvet Ant, Zero-Day /

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies 2024-07-02 at 12:16 By Ionut Arghire Cisco has patched an NX-OS command injection zero-day exploited by China-linked cyberespionage group Velvet Ant. The post Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies Read More »

In Other News: Malware Delivered by ISP, Temu Spying, Critical Dataverse Vulnerability

In Other News, Malware & Threats /

In Other News: Malware Delivered by ISP, Temu Spying, Critical Dataverse Vulnerability 2024-06-28 at 16:31 By SecurityWeek News Noteworthy stories that might have slipped under the radar: Korean ISP delivers malware to customers, Temu sued for allegedly spying on users, Microsoft patches a critical Dataverse vulnerability. The post In Other News: Malware Delivered by ISP,

React to this headline:

Loading spinner

In Other News: Malware Delivered by ISP, Temu Spying, Critical Dataverse Vulnerability Read More »

Polyfill Domain Shut Down as Owner Disputes Accusations of Malicious Activity

Malware & Threats, Polyfill, supply chain, Supply Chain Security /

Polyfill Domain Shut Down as Owner Disputes Accusations of Malicious Activity 2024-06-28 at 12:46 By Ionut Arghire Namecheap shut down polyfill.io amid reports of malicious activity, but the Chinese owner claims it has good intentions. The post Polyfill Domain Shut Down as Owner Disputes Accusations of Malicious Activity appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Polyfill Domain Shut Down as Owner Disputes Accusations of Malicious Activity Read More »

US Announces Charges, Reward for Russian National Behind Wiper Attacks on Ukraine

Malware & Threats, Nation-State, Russia, Ukraine, whispergate, wiper /

US Announces Charges, Reward for Russian National Behind Wiper Attacks on Ukraine 2024-06-27 at 22:16 By Ionut Arghire The US Justice Department has announced charges against Amin Stigal for conducting wiper cyberattacks on Ukraine in 2022. The post US Announces Charges, Reward for Russian National Behind Wiper Attacks on Ukraine appeared first on SecurityWeek. This

React to this headline:

Loading spinner

US Announces Charges, Reward for Russian National Behind Wiper Attacks on Ukraine Read More »

P2Pinfect Worm Now Dropping Ransomware on Redis Servers

Malware, Malware & Threats, Redis /

P2Pinfect Worm Now Dropping Ransomware on Redis Servers 2024-06-26 at 15:16 By Ionut Arghire The P2Pinfect worm targeting Redis servers has been updated with ransomware and cryptocurrency mining payloads. The post P2Pinfect Worm Now Dropping Ransomware on Redis Servers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

P2Pinfect Worm Now Dropping Ransomware on Redis Servers Read More »

Recent Zyxel NAS Vulnerability Exploited by Botnet

botnet, exploited, Malware & Threats, Zyxel /

Recent Zyxel NAS Vulnerability Exploited by Botnet 2024-06-25 at 16:46 By Ionut Arghire A Mirai-like botnet has started exploiting a critical-severity vulnerability in discontinued Zyxel NAS products. The post Recent Zyxel NAS Vulnerability Exploited by Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Recent Zyxel NAS Vulnerability Exploited by Botnet Read More »

Long-Running Chinese Espionage Campaign Targets Telecom Firms in Asian Country

China APT, Malware, Malware & Threats /

Long-Running Chinese Espionage Campaign Targets Telecom Firms in Asian Country 2024-06-20 at 19:01 By Ionut Arghire A years-long espionage campaign has targeted telecoms companies in Asia with tools associated with Chinese groups. The post Long-Running Chinese Espionage Campaign Targets Telecom Firms in Asian Country appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Long-Running Chinese Espionage Campaign Targets Telecom Firms in Asian Country Read More »

Highly Evasive SquidLoader Malware Targets China

Malware, Malware & Threats /

Highly Evasive SquidLoader Malware Targets China 2024-06-20 at 15:31 By Ionut Arghire A threat actor targeting Chinese-speaking victims has been using the SquidLoader malware loader in recent attacks. The post Highly Evasive SquidLoader Malware Targets China appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Highly Evasive SquidLoader Malware Targets China Read More »

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence

China APT, F5, Malware & Threats /

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence 2024-06-18 at 19:45 By Ionut Arghire China-linked threat actor Velvet Ant leveraged a legacy F5 BIG-IP appliance for three-year access to a victim’s network. The post Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence Read More »

New BadSpace Backdoor Deployed in Drive-By Attacks

backdoor, Malware, Malware & Threats /

New BadSpace Backdoor Deployed in Drive-By Attacks 2024-06-18 at 19:45 By Ionut Arghire The BadSpace backdoor is being distributed via drive-by attacks involving infected websites and JavaScript downloaders. The post New BadSpace Backdoor Deployed in Drive-By Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

New BadSpace Backdoor Deployed in Drive-By Attacks Read More »

Pakistani Threat Actors Caught Targeting Indian Gov Entities

Cisco Talos, Cyberwarfare, India, Malware & Threats, Nation-State, Pakistan, Volexity /

Pakistani Threat Actors Caught Targeting Indian Gov Entities 2024-06-14 at 17:31 By Ionut Arghire Security researchers at Cisco Talos and Volexity flag two Pakistani espionage campaigns targeting Indian government entities. The post Pakistani Threat Actors Caught Targeting Indian Gov Entities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Pakistani Threat Actors Caught Targeting Indian Gov Entities Read More »

CISA Warns of Progress Telerik Vulnerability Exploitation

CISA KEV, exploited, Malware & Threats, Progress Software /

CISA Warns of Progress Telerik Vulnerability Exploitation 2024-06-14 at 13:46 By Ionut Arghire CISA urges federal agencies to apply mitigations for an exploited Progress Telerik vulnerability as soon as possible. The post CISA Warns of Progress Telerik Vulnerability Exploitation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

CISA Warns of Progress Telerik Vulnerability Exploitation Read More »

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation

CVE-2024-32896, CVE-2024-4610, Google, Google Pixel, Malware & Threats, Mobile & Wireless, Vulnerabilities, Zero-Day /

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation 2024-06-12 at 21:16 By Ryan Naraine The zero-day is tagged as CVE-2024-32896 and described as an elevation of privilege issue in Pixel Firmware. The post Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation Read More »

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing

CVE-2024-30078, CVE-2024-30080, Malware & Threats, Microsoft, Patch Tuesday, Vulnerabilities /

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing 2024-06-12 at 00:46 By Ryan Naraine The Windows vulnerability carries a CVSS severity score of 9.8/10 and can be exploited by via specially crafted malicious MSMQ packets. The post Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing Read More »

Adobe Plugs Code Execution Holes in After Effects, Illustrator

Adobe, Malware & Threats, Patch Tuesday, Vulnerabilities /

Adobe Plugs Code Execution Holes in After Effects, Illustrator 2024-06-11 at 21:46 By Ryan Naraine Patch Tuesday: Adobe fixes critical flaws and warns of the risk of code execution attacks on Windows and macOS platforms. The post Adobe Plugs Code Execution Holes in After Effects, Illustrator appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Adobe Plugs Code Execution Holes in After Effects, Illustrator Read More »

Arm Warns of Exploited Kernel Driver Vulnerability

Arm, exploited, Featured, GPU, Malware & Threats, Vulnerabilities /

Arm Warns of Exploited Kernel Driver Vulnerability 2024-06-11 at 13:16 By Ionut Arghire Arm warns that CVE-2024-4610, a Mali GPU kernel driver vulnerability addressed two years ago, is exploited in attacks. The post Arm Warns of Exploited Kernel Driver Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Arm Warns of Exploited Kernel Driver Vulnerability Read More »

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks

Akamai, CVE-2018-20062, CVE-2019-9082, Malware & Threats, ThinkPHP, Vulnerabilities /

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks 2024-06-06 at 20:33 By Ionut Arghire Akamai warns that a Chinese threat actor is exploiting years-old remote code execution vulnerabilities in ThinkPHP in new attacks. The post Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks Read More »

Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics

Featured, Malware & Threats, Olympics, Russia /

Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics 2024-06-06 at 16:46 By Ionut Arghire Google and Microsoft warn of elevated risks of cyber threats facing the 2024 Paris Olympics, especially from Russian threat actors. The post Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics appeared first on

React to this headline:

Loading spinner

Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics Read More »

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years

China APT, Malware & Threats /

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years 2024-06-06 at 14:46 By Ionut Arghire Multiple Chinese state-sponsored groups have targeted a Southeast Asian government in a years-long cyberespionage campaign. The post Multiple Chinese APTs Targeted Southeast Asian Government for Two Years appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years Read More »

Scroll to Top