Malware & Threats

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence

China APT, F5, Malware & Threats /

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence 2024-06-18 at 19:45 By Ionut Arghire China-linked threat actor Velvet Ant leveraged a legacy F5 BIG-IP appliance for three-year access to a victim’s network. The post Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence appeared first on SecurityWeek. This article is an excerpt from SecurityWeek […]

React to this headline:

Loading spinner

Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence Read More »

New BadSpace Backdoor Deployed in Drive-By Attacks

backdoor, Malware, Malware & Threats /

New BadSpace Backdoor Deployed in Drive-By Attacks 2024-06-18 at 19:45 By Ionut Arghire The BadSpace backdoor is being distributed via drive-by attacks involving infected websites and JavaScript downloaders. The post New BadSpace Backdoor Deployed in Drive-By Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

New BadSpace Backdoor Deployed in Drive-By Attacks Read More »

Pakistani Threat Actors Caught Targeting Indian Gov Entities

Cisco Talos, Cyberwarfare, India, Malware & Threats, Nation-State, Pakistan, Volexity /

Pakistani Threat Actors Caught Targeting Indian Gov Entities 2024-06-14 at 17:31 By Ionut Arghire Security researchers at Cisco Talos and Volexity flag two Pakistani espionage campaigns targeting Indian government entities. The post Pakistani Threat Actors Caught Targeting Indian Gov Entities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Pakistani Threat Actors Caught Targeting Indian Gov Entities Read More »

CISA Warns of Progress Telerik Vulnerability Exploitation

CISA KEV, exploited, Malware & Threats, Progress Software /

CISA Warns of Progress Telerik Vulnerability Exploitation 2024-06-14 at 13:46 By Ionut Arghire CISA urges federal agencies to apply mitigations for an exploited Progress Telerik vulnerability as soon as possible. The post CISA Warns of Progress Telerik Vulnerability Exploitation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

CISA Warns of Progress Telerik Vulnerability Exploitation Read More »

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation

CVE-2024-32896, CVE-2024-4610, Google, Google Pixel, Malware & Threats, Mobile & Wireless, Vulnerabilities, Zero-Day /

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation 2024-06-12 at 21:16 By Ryan Naraine The zero-day is tagged as CVE-2024-32896 and described as an elevation of privilege issue in Pixel Firmware. The post Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation Read More »

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing

CVE-2024-30078, CVE-2024-30080, Malware & Threats, Microsoft, Patch Tuesday, Vulnerabilities /

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing 2024-06-12 at 00:46 By Ryan Naraine The Windows vulnerability carries a CVSS severity score of 9.8/10 and can be exploited by via specially crafted malicious MSMQ packets. The post Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing Read More »

Adobe Plugs Code Execution Holes in After Effects, Illustrator

Adobe, Malware & Threats, Patch Tuesday, Vulnerabilities /

Adobe Plugs Code Execution Holes in After Effects, Illustrator 2024-06-11 at 21:46 By Ryan Naraine Patch Tuesday: Adobe fixes critical flaws and warns of the risk of code execution attacks on Windows and macOS platforms. The post Adobe Plugs Code Execution Holes in After Effects, Illustrator appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Adobe Plugs Code Execution Holes in After Effects, Illustrator Read More »

Arm Warns of Exploited Kernel Driver Vulnerability

Arm, exploited, Featured, GPU, Malware & Threats, Vulnerabilities /

Arm Warns of Exploited Kernel Driver Vulnerability 2024-06-11 at 13:16 By Ionut Arghire Arm warns that CVE-2024-4610, a Mali GPU kernel driver vulnerability addressed two years ago, is exploited in attacks. The post Arm Warns of Exploited Kernel Driver Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Arm Warns of Exploited Kernel Driver Vulnerability Read More »

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks

Akamai, CVE-2018-20062, CVE-2019-9082, Malware & Threats, ThinkPHP, Vulnerabilities /

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks 2024-06-06 at 20:33 By Ionut Arghire Akamai warns that a Chinese threat actor is exploiting years-old remote code execution vulnerabilities in ThinkPHP in new attacks. The post Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks Read More »

Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics

Featured, Malware & Threats, Olympics, Russia /

Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics 2024-06-06 at 16:46 By Ionut Arghire Google and Microsoft warn of elevated risks of cyber threats facing the 2024 Paris Olympics, especially from Russian threat actors. The post Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics appeared first on

React to this headline:

Loading spinner

Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics Read More »

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years

China APT, Malware & Threats /

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years 2024-06-06 at 14:46 By Ionut Arghire Multiple Chinese state-sponsored groups have targeted a Southeast Asian government in a years-long cyberespionage campaign. The post Multiple Chinese APTs Targeted Southeast Asian Government for Two Years appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Multiple Chinese APTs Targeted Southeast Asian Government for Two Years Read More »

Researchers Show How Malware Could Steal Windows Recall Data

Malware, Malware & Threats, Windows Recall /

Researchers Show How Malware Could Steal Windows Recall Data 2024-06-05 at 16:31 By Eduard Kovacs Cybersecurity researchers are demonstrating how malware could steal data collected by the new Windows Recall feature. The post Researchers Show How Malware Could Steal Windows Recall Data appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Researchers Show How Malware Could Steal Windows Recall Data Read More »

CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability

CISA KEV, exploited, Malware & Threats, Oracle WebLogic /

CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability 2024-06-04 at 15:46 By Eduard Kovacs CISA has added an old Oracle WebLogic flaw tracked as CVE-2017-3506 to its known exploited vulnerabilities catalog. The post CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability Read More »

Identities of Cybercriminals Linked to Malware Loaders Revealed

cybercrime, Malware & Threats, Tracking & Law Enforcement /

Identities of Cybercriminals Linked to Malware Loaders Revealed 2024-06-03 at 16:46 By Ionut Arghire Law enforcement reveals the identities of eight cybercriminals linked to recently disrupted malware loaders. The post Identities of Cybercriminals Linked to Malware Loaders Revealed appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

Identities of Cybercriminals Linked to Malware Loaders Revealed Read More »

PoC Published for Exploited Check Point VPN Vulnerability

Check Point, exploited, Malware & Threats, VPN /

PoC Published for Exploited Check Point VPN Vulnerability 2024-06-03 at 15:46 By Ionut Arghire PoC code targeting a recent Check Point VPN zero-day has been released as Censys identifies 14,000 internet-accessible appliances. The post PoC Published for Exploited Check Point VPN Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

PoC Published for Exploited Check Point VPN Vulnerability Read More »

Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers

botnet, bricked, Malware & Threats, router /

Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers 2024-05-31 at 14:46 By Ionut Arghire Over 600,000 SOHO routers belonging to a single ISP and infected with the Chalubo trojan were rendered inoperable. The post Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers Read More »

Critical WordPress Plugin Flaws Exploited to Inject Malicious Scripts and Backdoors

CVE-2023-40000, CVE-2023-6961, CVE-2024-2194, Fastly, Malware & Threats, Vulnerabilities, WordPress /

Critical WordPress Plugin Flaws Exploited to Inject Malicious Scripts and Backdoors 2024-05-30 at 18:17 By Ionut Arghire Malicious campaign exploits high-severity XSS flaws in three WordPress plugins to backdoor websites. The post Critical WordPress Plugin Flaws Exploited to Inject Malicious Scripts and Backdoors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Critical WordPress Plugin Flaws Exploited to Inject Malicious Scripts and Backdoors Read More »

TrickBot and Other Malware Droppers Disrupted by Law Enforcement

dropper, Malware, Malware & Threats, takedown, Tracking & Law Enforcement, Trickbot /

TrickBot and Other Malware Droppers Disrupted by Law Enforcement 2024-05-30 at 15:32 By Ionut Arghire The TrickBot botnet and other malware droppers have been targeted by international law enforcement in Operation Endgame. The post TrickBot and Other Malware Droppers Disrupted by Law Enforcement appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

TrickBot and Other Malware Droppers Disrupted by Law Enforcement Read More »

Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested

botnet, dismantled, Featured, Malware & Threats, takedown, Tracking & Law Enforcement /

Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested 2024-05-30 at 15:01 By Eduard Kovacs The US announced that the 911 S5 (Cloud Router) botnet, likely the world’s largest, has been dismantled and its administrator arrested. The post Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested Read More »

Okta Warns of Credential Stuffing Attacks Targeting Cross-Origin Authentication

credential stuffing, Malware & Threats, Okta /

Okta Warns of Credential Stuffing Attacks Targeting Cross-Origin Authentication 2024-05-30 at 15:01 By Ionut Arghire Okta raises the alarm on credential stuffing attacks targeting endpoints used for cross-origin authentication. The post Okta Warns of Credential Stuffing Attacks Targeting Cross-Origin Authentication appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Okta Warns of Credential Stuffing Attacks Targeting Cross-Origin Authentication Read More »

Scroll to Top