F5 Products Denial of Service Vulnerability
A vulnerability was identified in F5 Products. A remote attacker could exploit this vulnerability to trigger denial of service condition on the targeted...
News
Over 100 Us And Eu Orgs Targeted In Strelastealer Malware Attacks
A new large-scale StrelaStealer malware campaign has impacted over a hundred organizations across the United States and Europe, attempting to...
Remote Monitoring Management Software Used In Phishing Attacks
Remote Monitoring & Management (RMM) software, including popular tools like AnyDesk, Atera, and Splashtop, are invaluable for IT administrators today,...
Massive Utility Scam Campaign Spreads Via Online Ads
For many households, energy costs represent a significant part of their overall budget. And when customers want to discuss their...
One Year Later Rhadamanthys Is Still Dropped Via Malvertising
It was just a little over a year ago that the Rhadamanthys stealer was first publicly seen distributed via malicious...
Ransomware Review February 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
New Go Loader Pushes Rhadamanthys
Malware loaders (also known as droppers or downloaders) are a popular commodity in the criminal underground. Their primary function is...
Pikabot Malware On The Rise What Organizations Need To Know
A new type of malware is being used by ransomware gangs in their attacks, and its name is PikaBot. A...
Stopping A Targeted Attack On A Managed Service Provider Msp With Threatdown Mdr
In late January 2024, the ThreatDown Managed Detection and Response (MDR) team found and stopped a three-month long malware campaign...
Fakebat Delivered Via Several Active Malvertising Campaigns
February was a particularly busy month for search-based malvertising with the number of incidents we documented almost doubling. We saw...
Ransomware Review March 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Hackers Earn 1 132 500 For 29 Zero Days At Pwn2own Vancouver
Pwn2Own Vancouver 2024 has ended with security researchers collecting $1,132,500 after demoing 29 zero-days (and some bug collisions). Throughout the event,...
Darknet Marketplace Nemesis Market Seized By German Police
The German police have seized infrastructure for the darknet Nemesis Market cybercrime marketplace in Germany and Lithuania, disrupting the site's...
Mozilla Fixes Two Firefox Zero Day Bugs Exploited At Pwn2own
Mozilla has released security updates to fix two zero-day vulnerabilities in the Firefox web browser exploited during the Pwn2Own Vancouver...
Russian Hackers Target German Political Parties With Wineloader Malware
Researchers are warning that a notorious hacking group linked to Russia's Foreign Intelligence Service (SVR) is targeting political parties in...
New Gofetch Attack On Apple Silicon Cpus Can Steal Crypto Keys
A new side-channel attack called "GoFetch" impacts Apple M1, M2, and M3 processors and can be used to steal secret...
New AcidPour Wiper Targeting Linux Devices Spotted in Ukraine
A new variant of the wiper malware AcidRain, known as AcidPour, has been discovered by SentinelOne’s threat intelligence team, SentinelLabs.AcidRain...
Active Exploitation of Critical Vulnerability in JetBrains TeamCity On-Premises
JetBrains has released updates addressing a critical vulnerability (CVE-2024-27198) affecting JetBrains TeamCity On-Premises. The vulnerability is reportedly being actively exploited and...
Ivanti Fixes Critical Standalone Sentry Bug Reported By Nato
Ivanti warned customers to immediately patch a critical severity Standalone Sentry vulnerability reported by NATO Cyber Security Centre researchers. Standalone...
Flipper Zero Makers Respond To Canadas Harmful Ban Proposal
The makers of Flipper Zero have responded to the Canadian government's plan to ban the device in the country, arguing...
Evasive Sign1 Malware Campaign Infects 39 000 WordPress Sites
A previously unknown malware campaign called Sign1 has infected over 39,000 websites over the past six months, causing visitors to...
Exploit Released For Fortinet Rce Bug Used In Attacks Patch Now
Security researchers have released a proof-of-concept (PoC) exploit for a critical vulnerability in Fortinet's FortiClient Enterprise Management Server (EMS) software,...
Githubs New Ai Powered Tool Auto Fixes Vulnerabilities In Your Code
GitHub introduced a new AI-powered feature capable of speeding up vulnerability fixes while coding. This feature is in public beta...
New Loop Dos Attack May Impact Up To 300 000 Online Systems
A new denial-of-service attack dubbed 'Loop DoS' targeting application layer protocols can pair network services into an indefinite communication loop that creates large...
