Malware & Threats

Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals

botnet, cybercrime, Featured, Malware & Threats, Russia /

Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals 2024-05-03 at 17:09 By Ionut Arghire A botnet dismantled in January and used by Russia-linked APT28 consisted of more than just Ubiquiti Edge OS routers. The post Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals appeared first on SecurityWeek. This article is an […]

React to this headline:

Loading spinner

Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals Read More »

Google Boosts Bug Bounty Payouts Tenfold in Mobile App Security Push

bug bounty program, Google, Google Play, Malware & Threats, Mobile & Wireless, Vulnerabilities /

Google Boosts Bug Bounty Payouts Tenfold in Mobile App Security Push 2024-05-01 at 18:33 By Ionut Arghire Researchers can earn as much as $450,000 for a single vulnerability report as Google boosts its mobile vulnerability rewards program. The post Google Boosts Bug Bounty Payouts Tenfold in Mobile App Security Push appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Google Boosts Bug Bounty Payouts Tenfold in Mobile App Security Push Read More »

Cuttlefish Malware Targets Routers, Harvests Cloud Authentication Data 

Cuttlefish, HiatusRAT, Malware & Threats, Nation-State, Network Security, router /

Cuttlefish Malware Targets Routers, Harvests Cloud Authentication Data  2024-05-01 at 18:33 By Ryan Naraine Cuttlefish malware platform roaming around enterprise SOHO routers capable of covertly harvesting public cloud authentication data from internet traffic. The post Cuttlefish Malware Targets Routers, Harvests Cloud Authentication Data  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Cuttlefish Malware Targets Routers, Harvests Cloud Authentication Data  Read More »

Wpeeper Android Trojan Uses Compromised WordPress Sites to Shield Command-and-Control Server

Android, Malware & Threats, Mobile & Wireless /

Wpeeper Android Trojan Uses Compromised WordPress Sites to Shield Command-and-Control Server 2024-05-01 at 15:31 By Ionut Arghire The new Wpeeper Android trojan ceased operations after a week and has zero detections in VirusTotal. The post Wpeeper Android Trojan Uses Compromised WordPress Sites to Shield Command-and-Control Server appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Wpeeper Android Trojan Uses Compromised WordPress Sites to Shield Command-and-Control Server Read More »

Critical Vulnerabilities in Judge0 Lead to Sandbox Escape, Host Takeover

CVE-2024-28189, CVE-2024-29021, Judge0, Malware & Threats, Vulnerabilities /

Critical Vulnerabilities in Judge0 Lead to Sandbox Escape, Host Takeover 2024-04-30 at 20:46 By Ionut Arghire Three vulnerabilities in the Judge0 open source service could allow attackers to escape the sandbox and obtain root privileges on the host. The post Critical Vulnerabilities in Judge0 Lead to Sandbox Escape, Host Takeover appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Critical Vulnerabilities in Judge0 Lead to Sandbox Escape, Host Takeover Read More »

CISA Rolls Out New Guidelines to Mitigate AI Risks to US Critical Infrastructure

AI, artificial inteligence, Artificial Intelligence, CISA, critical infrastructure, Government, Malware & Threats /

CISA Rolls Out New Guidelines to Mitigate AI Risks to US Critical Infrastructure 2024-04-29 at 21:02 By Ryan Naraine New CISA guidelines categorize AI risks into three significant types and pushes a four-part mitigation strategy. The post CISA Rolls Out New Guidelines to Mitigate AI Risks to US Critical Infrastructure appeared first on SecurityWeek. This

React to this headline:

Loading spinner

CISA Rolls Out New Guidelines to Mitigate AI Risks to US Critical Infrastructure Read More »

Google Says it Blocked 2.28 Million Apps from Google Play Store

Android, Google, Google Play, Malware & Threats, Mobile & Wireless /

Google Says it Blocked 2.28 Million Apps from Google Play Store 2024-04-29 at 20:16 By Ionut Arghire In 2023, Google said it blocked 2.28 million bad applications from being published on Google Play and banned 333,000 developer accounts. The post Google Says it Blocked 2.28 Million Apps from Google Play Store appeared first on SecurityWeek.

React to this headline:

Loading spinner

Google Says it Blocked 2.28 Million Apps from Google Play Store Read More »

Kaiser Permanente Data Breach Impacts 13.4 Million Patients

Data Breaches, healthcare, Kaiser Permanente, Malware & Threats, Privacy, surveillance /

Kaiser Permanente Data Breach Impacts 13.4 Million Patients 2024-04-29 at 18:31 By Ionut Arghire US healthcare giant is warning millions of current and former patients that their personal information was exposed to third-party advertisers. The post Kaiser Permanente Data Breach Impacts 13.4 Million Patients appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Kaiser Permanente Data Breach Impacts 13.4 Million Patients Read More »

Over 1,400 CrushFTP Instances Vulnerable to Exploited Zero-Day

CrushFTP, CVE-2024-4040, Malware & Threats, Vulnerabilities, Zero-Day /

Over 1,400 CrushFTP Instances Vulnerable to Exploited Zero-Day 2024-04-26 at 17:16 By Ionut Arghire More than 1,400 CrushFTP servers remain vulnerable to an actively exploited zero-day for which PoC has been published. The post Over 1,400 CrushFTP Instances Vulnerable to Exploited Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Over 1,400 CrushFTP Instances Vulnerable to Exploited Zero-Day Read More »

Powerful ‘Brokewell’ Android Trojan Allows Attackers to Takeover Devices

Android, Malware, Malware & Threats, Mobile & Wireless /

Powerful ‘Brokewell’ Android Trojan Allows Attackers to Takeover Devices 2024-04-26 at 17:16 By Ionut Arghire A new Android trojan named Brokewell can steal user’s sensitive information and allows attackers to take over devices. The post Powerful ‘Brokewell’ Android Trojan Allows Attackers to Takeover Devices appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Powerful ‘Brokewell’ Android Trojan Allows Attackers to Takeover Devices Read More »

Self-Spreading PlugX USB Drive Malware Plagues Over 90k IP Addresses

Malware & Threats, PlugX /

Self-Spreading PlugX USB Drive Malware Plagues Over 90k IP Addresses 2024-04-26 at 17:16 By Ionut Arghire More than 90,000 unique IPs are still infected with a PlugX worm variant that spreads via infected flash drives. The post Self-Spreading PlugX USB Drive Malware Plagues Over 90k IP Addresses appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Self-Spreading PlugX USB Drive Malware Plagues Over 90k IP Addresses Read More »

North Korean Hackers Hijack Antivirus Updates for Malware Delivery

Malware, Malware & Threats, North Korea /

North Korean Hackers Hijack Antivirus Updates for Malware Delivery 2024-04-24 at 18:17 By Ionut Arghire A North Korea-linked threat actor hijacked the update mechanism of eScan antivirus to deploy backdoors and cryptocurrency miners. The post North Korean Hackers Hijack Antivirus Updates for Malware Delivery appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

North Korean Hackers Hijack Antivirus Updates for Malware Delivery Read More »

Threat Actor Uses Multiple Infostealers in Global Campaign

Malware, Malware & Threats /

Threat Actor Uses Multiple Infostealers in Global Campaign 2024-04-24 at 16:16 By Ionut Arghire A threat actor tracked as CoralRaider has been using multiple infostealers to harvest credentials from users worldwide. The post Threat Actor Uses Multiple Infostealers in Global Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Threat Actor Uses Multiple Infostealers in Global Campaign Read More »

Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations 

APT28, espionage, Malware, Malware & Threats, Microsoft, Nation-State, Russia /

Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations  2024-04-23 at 17:16 By Ionut Arghire Russia-linked APT28 deploys the GooseEgg post-exploitation tool against numerous US and European organizations. The post Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations  Read More »

Thousands of Palo Alto Firewalls Potentially Impacted by Exploited Vulnerability 

exploited, Malware & Threats, Palo Alto Networks /

Thousands of Palo Alto Firewalls Potentially Impacted by Exploited Vulnerability  2024-04-22 at 15:16 By Ionut Arghire Shadowserver has identified roughly 6,000 internet-accessible Palo Alto Networks firewalls potentially vulnerable to CVE-2024-3400. The post Thousands of Palo Alto Firewalls Potentially Impacted by Exploited Vulnerability  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Thousands of Palo Alto Firewalls Potentially Impacted by Exploited Vulnerability  Read More »

Threat-Intelligence Startup VulnCheck Closes $8M Seed Financing

Funding/M&A, Malware & Threats, seed-stage, Sorenson Ventures, VulnCheck /

Threat-Intelligence Startup VulnCheck Closes $8M Seed Financing 2024-04-19 at 18:01 By SecurityWeek News VulnCheck banks $8 million in early stage capital to build ‘exploit intelligence’ technologies and services. The post Threat-Intelligence Startup VulnCheck Closes $8M Seed Financing appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

Threat-Intelligence Startup VulnCheck Closes $8M Seed Financing Read More »

In Other News: OSS Backdooring Attempts, Botnet Operator Charged, Automotive Firm Attack

In Other News, Malware & Threats /

In Other News: OSS Backdooring Attempts, Botnet Operator Charged, Automotive Firm Attack 2024-04-19 at 17:01 By SecurityWeek News Noteworthy stories that might have slipped under the radar: OpenSSF and OpenJS incidents similar to XZ backdoor, Moldovan botnet operator charged, US automotive company targeted by FIN7. The post In Other News: OSS Backdooring Attempts, Botnet Operator

React to this headline:

Loading spinner

In Other News: OSS Backdooring Attempts, Botnet Operator Charged, Automotive Firm Attack Read More »

OpenMetadata Vulnerabilities Exploited to Abuse Kubernetes Clusters for Cryptomining  

exploited, Kubernetes, Malware & Threats, OpenMetadata /

OpenMetadata Vulnerabilities Exploited to Abuse Kubernetes Clusters for Cryptomining   2024-04-19 at 13:01 By Eduard Kovacs Microsoft warns that several OpenMetadata vulnerabilities are being exploited to deploy cryptomining malware to Kubernetes environments. The post OpenMetadata Vulnerabilities Exploited to Abuse Kubernetes Clusters for Cryptomining   appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

OpenMetadata Vulnerabilities Exploited to Abuse Kubernetes Clusters for Cryptomining   Read More »

Kapeka: A New Backdoor in Sandworm’s Arsenal of Aggression

Malware & Threats, Sandworm /

Kapeka: A New Backdoor in Sandworm’s Arsenal of Aggression 2024-04-17 at 23:16 By Kevin Townsend Kapeka is a new backdoor that may be a new addition to Russia-link Sandworm’s malware arsenal and possibly a successor to GreyEnergy. The post Kapeka: A New Backdoor in Sandworm’s Arsenal of Aggression appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Kapeka: A New Backdoor in Sandworm’s Arsenal of Aggression Read More »

Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks

brute-force, Malware & Threats, VPN /

Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks 2024-04-17 at 17:01 By Ionut Arghire Cisco has observed an increase in brute-force attacks targeting web application authentication, VPNs, and SSH services. The post Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Cisco: Multiple VPN, SSH Services Targeted in Mass Brute-Force Attacks Read More »

Scroll to Top