Critical QNAP Vulnerabilities in Notes Station 3 and QuRouter Demand Immediate Patching (CVE-2024-38645, CVE-2024-38643, CVE-2024-48860)
Nov 26, 2024
Categories
Top Articles
Perfctl Campaign Exploits Millions of Linux Servers for Crypto Mining and Proxyjacking
Nov 25, 2024
NodeStealer’s Evolution: A Growing Threat to Facebook Accounts and Beyond
Nov 22, 2024
Financial Software Company Finastra Investigates Recent Security Incident
Nov 21, 2024
Privilege Escalation Risks in ‘needrestart’ Utility Threaten Linux Systems; OSS-Fuzz Finds 26 Hidden Flaws
Nov 21, 2024
Sep 20, 2022
Microsoft and VMware Warn of Ongoing Chromeloader Malware Campaign
Microsoft and VMware Warn of Ongoing Chromeloader Malware Campaign Microsoft and VMware cautioned users about a widely spread Chromeloader malware campaign. The malware is said to have evolv...
Learn More
Sep 19, 2022
Diplomatic Crisis: Cyber Attack from Iran to Albania
Diplomatic Crisis: Cyber Attack from Iran to Albania On September 7, Edi Rama –the Prime Minister of Albania– released a video message on the website of the Government of Albania. Accordin...
Learn More
Sep 16, 2022
Why are Threat Actors Targeting Indonesia?
Why are Threat Actors Targeting Indonesia? On September 3, Indonesia hiked fuel prices by 30%, stating that petrol and diesel prices are still low by world standards, but subsidies are unsustainable. ...
Learn More
Sep 16, 2022
Trend Micro Warnes for Actively Exploited RCE Flaw in Apex One
Trend Micro Warnes for Actively Exploited RCE Flaw in Apex One Trend Micro recently released a patch for an actively exploited flaw in its endpoint security platform, Apex One. The security software p...
Learn More
Sep 16, 2022
Hacker Breached Nearly Entire Uber IT System
Hacker Breached Nearly Entire Uber IT System Transportation provider giant Uber is currently investigating a cyberattack. Following a network intrusion, multiple instances used by the company have bee...
Learn More
Sep 15, 2022
WordPress Sites Compromised Due to FishPig Supply Chain Attack
WordPress Sites Compromised Due to FishPig Supply Chain Attack Numerous attack scenarios were observed targeting WordPress recently. These attacks abused WordPress plugins and tools to exploit website...
Learn More
Sep 14, 2022
Loader Malware Emotet is Now Led by Quantum and BlackCat
Loader Malware Emotet is Now Led by Quantum and BlackCat Emotet (also known as SpmTools) is a sophisticated, modular banking trojan. Emotetmostly serves as a downloader or dropper of other bankin...
Learn More
Sep 14, 2022
September Patch Tuesday Fixes Actively Exploited Zero Day and RCE Flaw...
September Patch Tuesday Fixes Actively Exploited Zero Day and RCE Flaws Microsoft’s September Patch Tuesday update includes fixes for 63 vulnerabilities. There are five high-severity remote code...
Learn More
Sep 13, 2022
Vote for SOCRadar at the Computing Security Awards 2022!
Vote for SOCRadar at the Computing Security Awards 2022! SOCRadar is proud to be among the finalists in the “Threat Intelligence Award” category this year at the Computing Security Awards ...
Learn More
Sep 12, 2022
High-Severity Firmware Flaws in HP Devices Yet to Be Patched
High-Severity Firmware Flaws in HP Devices Yet to Be Patched Specific HP PC models’ BIOS has flaws that could allow arbitrary code execution, escalation of privilege, denial of service, and info...
Learn More
Sep 12, 2022
Lampion Banking Malware Reappears in WeTransfer Phishing Attacks
Lampion Banking Malware Reappears in WeTransfer Phishing Attacks Lampion malware operators use the free file-sharing platform WeTransfer to perform phishing attacks. This way, attackers can avoid secu...
Learn More
Sep 09, 2022
Patch Released for RCE Vulnerability in pfSense Firewall
Patch Released for RCE Vulnerability in pfSense Firewall A critical vulnerability has been discovered in a plugin of Netgate’s pfSense firewall. The flaw is tracked as CVE-2022-31814&n...
Learn More
Sep 08, 2022
Cisco Released Patches for Vulnerabilities Affecting Several Products
Cisco Released Patches for Vulnerabilities Affecting Several Products Three security issues impacting Cisco products were patched on Wednesday, including a high-severity vulnerability discov...
Learn More
Sep 08, 2022
Zyxel NAS Devices are Affected by a Critical RCE Vulnerability
Zyxel NAS Devices are Affected by a Critical RCE Vulnerability Zyxel has announced fixes for a severe format string issue in its network attached storage products. The Taiwanese network giant’s ...
Learn More
Sep 07, 2022
Illegal Marketplace WT1SHOP Seized After Nearly 6M Records Compromised...
Illegal Marketplace WT1SHOP Seized After Nearly 6M Records Compromised A global law enforcement operation has taken down the website and domains for WT1SHOP. WT1SHOP is an illegal marketplace often ...
Learn More
Sep 07, 2022
Mirai Variant MooBot Targets RCE Vulnerabilities in D-Link Routers
Mirai Variant MooBot Targets RCE Vulnerabilities in D-Link Routers MooBot botnet is back for new attacks. The variant of the Mirai malware started a new campaign last month to exploit critical vulnera...
Learn More
Sep 06, 2022
TikTok Denies Allegations of a 2.05 Billion Record Data Breach
TikTok Denies Allegations of a 2.05 Billion Record Data Breach Popular social media platform TikTok rejected claims that it had been compromised by threat actors who claimed to have obtained access to...
Learn More
Sep 06, 2022
QNAP Fixes Zero-Day Recently Leveraged by DeadBolt Ransomware
QNAP Fixes Zero-Day Recently Leveraged by DeadBolt Ransomware The Taiwanese company QNAP cautions customers about DeadBolt ransomware attacks upon exploiting a zero-day vulnerabili...
Learn More
Sep 05, 2022
Major Cyberattacks in Review: August 2022
Major Cyberattacks in Review: August 2022 Threat actors did not stay idle in August, and as always, they continued their attacks on small or large companies, government organizations, and critical in...
Learn More
Sep 05, 2022
Attackers Targeting Banking Credentials: American Express and Google P...
Attackers Targeting Banking Credentials: American Express and Google Play Users at Risk Phishing has changed significantly over the past ten years, and scammers now have sophisticated tools to use fak...
Learn More
