Feb 25, 2025
Categories
Top Articles
Oct 04, 2023
CVE-2023-22515: The Confluence Data Center and Server Vulnerability
CVE-2023-22515: The Confluence Data Center and Server Vulnerability [Update] November 13, 2023: New ‘Effluence’ Backdoor Targets Confluence Data Center and Server Upon Exploiting CVE-2023-22515 and CV...
Learn More
Oct 04, 2023
Dark Web Profile: Snatch Ransomware
Dark Web Profile: Snatch Ransomware According to CISA, since the latter part of 2021, the perpetrators behind Snatch Ransomware have persistently adapted their strategies, capitalizing on prevailing t...
Learn More
Oct 04, 2023
Origin of the Botnets: New Mirai-based Botnet Variants Emerge (hailBot...
Origin of the Botnets: New Mirai-based Botnet Variants Emerge (hailBot, kiraiBot, and catDDoS) The landscape of botnet development has been transformed in recent years, thanks to the accessibility of ...
Learn More
Oct 03, 2023
CISA Flags Active Exploitation of Mali GPU Drivers Vulnerability: CVE-...
CISA Flags Active Exploitation of Mali GPU Drivers Vulnerability: CVE-2023-4211 In the ever-evolving cybersecurity landscape, adding a vulnerability to CISA’s Known Exploited Vulnerabilities Cat...
Learn More
Oct 03, 2023
Cloudflare Protection Bypass Vulnerability on Threat Actors' Radar
Cloudflare Protection Bypass Vulnerability on Threat Actors’ Radar Cloudflare, a leading cybersecurity provider, faces a security challenge due to vulnerabilities that could put its customer env...
Learn More
Oct 02, 2023
The "Evil" of Everything - Part II: Evilginx and EvilQR Rises AitM
The “Evil” of Everything – Part II: Evilginx and EvilQR Rises AitM In the ever-evolving landscape of cybersecurity threats, it is imperative to maintain vigilance and adaptability. ...
Learn More
Oct 02, 2023
The "Evil" of Everything - Part I: EvilProxy Rises AitM
The “Evil” of Everything – Part I: EvilProxy Rises AitM In today’s digital era, detecting a burgeoning type of cyberattack, known as Adversary-in-the-Middle (AiTM) attacks, is...
Learn More
Oct 02, 2023
Decrypting the Shadows: Revealing the Secrets of Ransomware Operators ...
Decrypting the Shadows: Revealing the Secrets of Ransomware Operators – An Interview with @htmalgae Meet @htmalgae, an anonymous security researcher with a wealth of experience in web applicatio...
Learn More
Oct 02, 2023
Windows 0-Day Exploit and RDP Access Sales, Database Leaks for Domasa ...
Windows 0-Day Exploit and RDP Access Sales, Database Leaks for Domasa City and Jeevess Ayurveda Threat actors persist in engaging in illicit activities within the enigmatic realm of the dark web. The ...
Learn More
Oct 02, 2023
Zero-Day Vulnerabilities in Exim Email Server: Risk of RCE (CVE-2023-4...
Zero-Day Vulnerabilities in Exim Email Server: Risk of RCE (CVE-2023-42115, CVE-2023-42116, CVE-2023-42117, and More) Zero Day Initiative disclosed a total of six zero-day vulnerabilities in the Exim ...
Learn More
Sep 29, 2023
Exclusive Interview: Dark Web Monitoring, AI’s Role and Strategic Inve...
Exclusive Interview: Dark Web Monitoring, AI’s Role and Strategic Investments in Cyber Security We are delighted to present an exclusive interview with Nigel Simpson, Head of Global Cybersecurity for ...
Learn More
Sep 29, 2023
3AM Ransomware: A Modern Threat with a Vintage Twist
3AM Ransomware: A Modern Threat with a Vintage Twist The 3AM ransomware group has recently been spotlighted for its cybercriminal activities. However, why it is the topic of the day is their choice of...
Learn More
Sep 29, 2023
The Torrent Landscape: Understanding Security, Risks, and the Future
The Torrent Landscape: Understanding Security, Risks, and the Future In today’s digital age, the term “torrenting” often evokes images of pirated movies, music, or TV shows. However,...
Learn More
Sep 29, 2023
‘Nightmangle’ Telegram C2 Agent and New FUD Crypter with Windows Defen...
‘Nightmangle’ Telegram C2 Agent and New FUD Crypter with Windows Defender Bypass [Update] October 5, 2023: See the subheading: “SPCRYPTER’s Latest Update: No More Trials.” Hackers favor Te...
Learn More
Sep 29, 2023
WS_FTP Server Critical Vulnerabilities: What You Need to Know (CVE-202...
WS_FTP Server Critical Vulnerabilities: What You Need to Know (CVE-2023-40044, CVE-2023-42657) In the ever-changing landscape of cybersecurity, staying updated with current vulnerabilities is crucial....
Learn More
Sep 28, 2023
New Campaign Distributes Malicious npm and PyPI Packages to Pilfer Kub...
New Campaign Distributes Malicious npm and PyPI Packages to Pilfer Kubernetes Config, SSH Keys Researchers have discovered a concerning surge in deceptive npm and PyPI packages distributed as part of ...
Learn More
Sep 27, 2023
Critical Zero-Day Vulnerability in ‘libwebp’: CVE-2023-4863 Reassigned...
Critical Zero-Day Vulnerability in ‘libwebp’: CVE-2023-4863 Reassigned as CVE-2023-5129 [Update] October 18, 2023: See the subheading: “Fantom Foundation Breached: $550K Crypto Theft Linked to CVE-202...
Learn More
Sep 27, 2023
Microsoft SharePoint Server Elevation of Privilege Vulnerability Explo...
Microsoft SharePoint Server Elevation of Privilege Vulnerability Exploit (CVE-2023-29357) [Update] January 11, 2024: “SharePoint Vulnerability Has Been Added to the KEV Catalog by CISA” [Update] Sept...
Learn More
Sep 26, 2023
NIST Cybersecurity Framework 2.0: What You Need to Know
NIST Cybersecurity Framework 2.0: What You Need to Know In a previous SOCRadar blog post, we delved into the importance of cybersecurity frameworks for today’s organizations. In this installment, we p...
Learn More
Sep 26, 2023
What You Need to Know About the Alleged Sony Breach
What You Need to Know About the Alleged Sony Breach The RansomedVC group has announced that it successfully breached Sony, the renowned Japanese multinational electronics giant. The group claims to ha...
Learn More
