US-CERT Vulnerability Summary for the Week of August 7, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info phoenixcontact -- wp_6xxx_series In PHOENIX CONTACTs WP 6xxx series web panels...
News
Back to school security against ransomware attacks on K-12 and colleges
A ransomware attack on an educational institution causes more than just class disruption. It can result in lost teaching hours,...
Ivanti Avalanche impacted by critical pre-auth stack buffer overflows
Two stack-based buffer overflows collectively tracked as CVE-2023-32560 impact Ivanti Avalanche, an enterprise mobility management (EMM) solution designed to manage,...
Raccoon Stealer malware returns with new stealthier version
Image: Midjourney The developers of Raccoon Stealer information-stealing malware have ended their 6-month hiatus from hacker forums to promote a...
New CVE-2023-3519 scanner detects hacked Citrix ADC, Gateway devices
Mandiant has released a scanner to check if a Citrix NetScaler Application Delivery Controller (ADC) or NetScaler Gateway Appliance was...
Almost 2,000 Citrix NetScaler servers backdoored in hacking campaign
A threat actor has compromised close to 2,000 thousand Citrix NetScaler servers in a massive campaign exploiting the critical-severity remote...
LinkedIn accounts hacked in widespread hijacking campaign
LinkedIn is being targeted in a wave of account hacks resulting in many accounts being locked out for security reasons...
FBI: Mobile Beta-Testing Apps Are Major Security Risk
The FBI has warned consumers not to download apps labelled as in beta test mode as they might be involved...
AI a Top Risk and the Preferred Solution to Financial Crime
Generative AI tools are the most effective way to tackle financial crime, but also a number one threat, according to...
Over 100,000 Users of Hacking Forums Infected With Malware
Security researchers have discovered over 140,000 breached passwords associated with accounts on hacking forums after their owners were infected with...
PSNI: Leaked Data Will be Used to Target Police Officers
Sensitive details of 10,000 Northern Ireland police officers and staff are in the hands of paramilitary groups, the Police Service...
UK Police Data Breach Exposes Victim Information
The Norfolk and Suffolk police in the UK have confirmed the accidental exposure of personal data belonging to more than...
New QwixxRAT Trojan Spreads Through Messaging Apps
A new cybersecurity threat known as QwixxRAT, a Remote Access Trojan (RAT), was discovered by the Uptycs Threat Research team...
Global IoT Trust Survey Reveals Security Concerns
A new study by IT security solutions provider Utimaco has revealed the prevailing lack of trust in Internet of Things...
Discord.io Halts All Operations After Massive Data Breach
Discord.io has shut down operations after suffering a major data breach exposing the personal details of its 760,000 members.A statement...
US-CERT Vulnerability Summary for the Week of August 7, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info phoenixcontact -- wp_6xxx_series In PHOENIX CONTACTs WP 6xxx series web panels...
Cybercriminals Abusing Cloudflare R2 for Hosting Phishing Pages, Experts Warn
Threat actors' use of Cloudflare R2 to host phishing pages has witnessed a 61-fold increase over the past six months....
Multiple Flaws Found in ScrutisWeb Software Exposes ATMs to Remote Hacking
Four security vulnerabilities in the ScrutisWeb ATM fleet monitoring software made by Iagona could be exploited to remotely break into...
Monti Ransomware Returns with New Linux Variant and Enhanced Evasion Tactics
The threat actors behind the Monti ransomware have resurfaced after a two-month break with a new Linux version of the...
Malware Unleashed: Public Sector Hit in Sudden Surge, Reveals New Report
The just-released BlackBerry Global Threat Intelligence Report reveals a 40% increase in cyberattacks against government and public service organizations versus...
Gigabud RAT Android Banking Malware Targets Institutions Across Countries
Account holders of over numerous financial institutions in Thailand, Indonesia, Vietnam, the Philippines, and Peru are being targeted by an...
Catching the Catphish: Join the Expert Webinar on Combating Credential Phishing
Is your organization constantly under threat from credential phishing? Even with comprehensive security awareness training, many employees still fall victim...
Over 12,000 Computers Compromised by Info Stealers Linked to Users of Cybercrime Forums
A "staggering" 120,000 computers infected by stealer malware have credentials associated with cybercrime forums, many of them belonging to malicious...
North Korean Hackers Suspected in New Wave of Malicious npm Packages
The npm package registry has emerged as the target of yet another highly targeted attack campaign that aims to entice...
