Atlassian Hacked: SiegedSec Hacker Group Leaks Company's Data
Atlassian Hacked: SiegedSec Hacker Group Leaks Company’s Data As a late Valentine’s Day hack, a hacker group called “SiegedSec” claims to have hacked software company Atla...
Microsoft Fixes 3 Actively Exploited Zero-Day in February Patch Tuesda...
Microsoft Fixes 3 Actively Exploited Zero-Day in February Patch Tuesday Three actively exploited zero-day vulnerabilities and a total of 75 flaws are fixed by Microsoft’s security updates and Pa...
Cloudflare Thwarts Largest DDoS Attack on Record: 71M Requests
Cloudflare Thwarts Largest DDoS Attack on Record: 71M Requests Cloudflare has blocked dozens of hyper-volumetric DDoS attacks aimed at its customers over the weekend. With 71 million re...
Patch Released for CVE-2023-25194 RCE Vulnerability in Apache Kafka
Patch Released for CVE-2023-25194 RCE Vulnerability in Apache Kafka The most recent patch for Apache Kafka fixes an unsafe Java deserialization vulnerability. The vulnerability, tr...
Cybercriminals Seek to Turn Humanitarian Crisis Into Opportunity
Cybercriminals Seek to Turn Humanitarian Crisis Into Opportunity On Monday, February 6, 2023, Turkey and Syria woke up to the morning of a major natural disaster. Two devastating earthquakes, 7.7...
Decryptors Available for the ESXiArgs Incidents and Cl0p Ransomware Va...
Decryptors Available for the ESXiArgs Incidents and Cl0p Ransomware Variants Researchers have developed decryptors for some recent ransomware operations. The specific ransomware operations u...
1,200 Redis Servers Infected by New HeadCrab Malware for Cryptomining ...
1,200 Redis Servers Infected by New HeadCrab Malware for Cryptomining Operations A new malware has appeared on the frontlines, targeting online Redis servers. The malware, named HeadCrab by researcher...
134M Exploit Attempts: Realtek RCE Vulnerability Targeted in Large-Sca...
134M Exploit Attempts: Realtek RCE Vulnerability Targeted in Large-Scale Attacks Threat actors stepped up their efforts to exploit a remote code execution vulnerability in the Realtek Jungle SDK&...
Yandex Code Repositories Leaked Allegedly by Former Employee
Yandex Code Repositories Leaked Allegedly by Former Employee Yandex, a Russian technology company and popular search engine, has had its source code repositories leaked on a hacker forum. Ac...
VMware Patches Critical RCE Vulnerabilities in vRealize Log Insight
VMware Patches Critical RCE Vulnerabilities in vRealize Log Insight UPDATE (February 1, 2023): Proof-of-concept (PoC) code for a VMware vRealize Log Insight vulnerability chain has been made available...
Remote Code Execution Vulnerability in Microsoft Teams
Remote Code Execution Vulnerability in Microsoft Teams Researchers discovered an RCE vulnerability in Microsoft Teams during Pwn2Own 2022. The application is used by a wide range of people, ...
Attackers Exploit Fortinet Zero-Day CVE-2022-42475 with BoldMove Malwa...
Attackers Exploit Fortinet Zero-Day CVE-2022-42475 with BoldMove Malware Researchers have discovered a sophisticated new BoldMove malware created specifically to operate on FortinetR...
PayPal Reveals Credential Stuffing Attack That Affected 35K Users
PayPal Reveals Credential Stuffing Attack That Affected 35K Users PayPal has disclosed that it was hit by a credential stuffing attack last month. The online payment platform notifies all us...
CISA Warns for Vulnerabilities in Industrial Control Systems (ICS)
CISA Warns for Vulnerabilities in Industrial Control Systems (ICS) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns about multiple security vulnerabilities in GE D...
Threat Actors Use GitHub Codespaces Feature to Distribute Malicious Co...
Threat Actors Use GitHub Codespaces Feature to Distribute Malicious Content Since its public release in November 2022, GitHub Codespaces has been a popular environment among developers; howe...
What Do You Need to Know About the Critical RCE Vulnerability in Zoho’...
What Do You Need to Know About the Critical RCE Vulnerability in Zoho’s ManageEngine? (CVE-2022-47966) CVE-2022-47966, a critical vulnerability in a number of Zoho’s products, allows remote code execu...
Attackers Infected a CircleCI Employee with Malware to Steal Customer ...
Attackers Infected a CircleCI Employee with Malware to Steal Customer Session Tokens Software provider CircleCI confirmed that a data breach in December resulted in the theft of some of its ...
Threat Actors Exploit CVE-2022-44877 RCE Vulnerability in CentOS Web P...
Threat Actors Exploit CVE-2022-44877 RCE Vulnerability in CentOS Web Panel (CWP) Update (16.01.2023): According to data gathered by researchers, the CVE-2022-46169 vulnerability in Cacti saw an increa...
Cacti Patched CVE-2022-46169 Critical RCE Vulnerability
Cacti Patched CVE-2022-46169 Critical RCE Vulnerability Cacti patched a critical security flaw to prevent arbitrary code execution on Cacti-running servers. Cacti is an open-source, we...
Ransomware Gangs Leak Large Amounts of Data in Recent Attacks: Hive an...
Ransomware Gangs Leak Large Amounts of Data in Recent Attacks: Hive and Vice Society Ransomware gangs are known to release stolen data in retaliation if the ransom is not paid after successful encrypt...