IBM Report: Data Breach Costs Higher Than Ever
IBM Report: Data Breach Costs Higher Than Ever IBM has published the Cost of a Data Breach report, which reveals how organizations from different industries are affected by data breaches and set futur...
VMware Fixes Critical Vulnerabilities Including RCE and Authentication...
VMware Fixes Critical Vulnerabilities Including RCE and Authentication Bypass With the security update released Tuesday, VMware fixed ten vulnerabilities affecting some of its products. One is the aut...
Banking Trojans Distributed on Google Play Store in DawDropper Campaig...
Banking Trojans Distributed on Google Play Store in DawDropper Campaign Cybersecurity researchers have uncovered a new campaign to distribute banking trojans on the Google Play Store. These ̶...
Vulnerabilities in Atlassian Confluence Actively Exploited
Vulnerabilities in Atlassian Confluence Actively Exploited The critical hard-coded credentials flaw in Atlassian’s Questions For Confluence app (CVE-2022-26138) has been actively explo...
Threats of Commercialized Malware: Knotweed
Threats of Commercialized Malware: Knotweed Microsoft associates the private sector offensive actor (PSOA) Knotweed with the Austrian spyware distributor DSIRF. DSIRF, founded in 2016, advertises...
Ducktail Malware Targets Facebook Business Accounts via LinkedIn Phish...
Ducktail Malware Targets Facebook Business Accounts via LinkedIn Phishing Attack A new phishing attempt with the codename Ducktail is in progress and targets LinkedIn users who work in the field to hi...
Zero-Day Security Flaw Exploited in PrestaShop Websites
Zero-Day Security Flaw Exploited in PrestaShop Websites Attackers discovered a way to exploit a vulnerability in PrestaShop servers. The actively exploited zero-day, CVE-2022-36408, allows attackers t...
SonicWall Released Hotfix for Critical SQL Injection Flaw
SonicWall Released Hotfix for Critical SQL Injection Flaw A severe SQL injection vulnerability has been reported by network security vendor SonicWall in their security advisory. It affects the&nb...
Cisco Released Patches for Multiple Nexus Dashboard Vulnerabilities
Cisco Released Patches for Multiple Nexus Dashboard Vulnerabilities Cisco announced that it has released security updates for vulnerabilities detected in the Nexus Dashboard. The security flaws i...
Atlassian Patched Critical Vulnerability That Affects Confluence Serve...
Atlassian Patched Critical Vulnerability That Affects Confluence Servers Atlassian announced that it has released an update for a critical vulnerability affecting its Confluence Server and Data Center...
Black Basta Ransomware Victim Knauf Forced to Stop Their Services
Black Basta Ransomware Victim Knauf Forced to Stop Their Services Construction materials manufacturer Knauf announced it was the target of a cyberattack by the Black Basta ransomware. The company decl...
CISA Warned To Patch Actively Exploited Privilege Escalation Vulnerabi...
CISA Warned To Patch Actively Exploited Privilege Escalation Vulnerability On Windows Microsoft discovered a new zero-day vulnerability in Windows products and released a patch. The vulnerability lets...
Juniper Networks Released Fixes For Critical Vulnerabilities
Juniper Networks Released Fixes For Critical Vulnerabilities CISA advised users and administrators to apply recently released fixes in Juniper Networks products due to several critical vulnerabil...
Major Cyber Attacks in Review: June 2022
Major Cyber Attacks in Review: June 2022 You can follow the major cyber security attacks of each month on SOCRadar’s “Radar” page! We experienced critical days last month due to...
Brute Ratel Utilized By Threat Actors In New Ransomware Operations
Brute Ratel Utilized By Threat Actors In New Ransomware Operations When Brute Ratel first appeared in the wild, almost no security solutions could detect it. To avoid being discovered by EDR ...
NPM Packages Used In A Supply Chain Attack
NPM Packages Used In A Supply Chain Attack Hundreds of desktop applications and websites were compromised by an NPM supply chain attack that started in December 2021, using malicious NPM packages wit...
RedAlert Ransomware Targets Windows and Linux VMware ESXi Servers
RedAlert Ransomware Targets Windows and Linux VMware ESXi Servers RedAlert is a new ransomware operation aiming to encrypt Windows and Linux VMWare ESXi servers on corporate networks using the NTRUEnc...
Hundreds of Windows Networks are Infected with Raspberry Robin Worm
Hundreds of Windows Networks are Infected with Raspberry Robin Worm [Update] February 12, 2024: “Raspberry Robin Malware Advances with New One-Day Exploits” Microsoft reported that hundred...
SOCRadar Denmark Threat Landscape Report: 9 Danish Companies Targeted ...
SOCRadar Denmark Threat Landscape Report: 9 Danish Companies Targeted Every 9 Days Cybercrime is a threat that closely concerns public authorities, companies, and residents in Denmark, as it is around...
New Version of Raccoon Stealer Released
New Version of Raccoon Stealer Released The new version of Raccoon Stealer has been released. The first version was first seen in 2019 and served as MaaS (malware-as-a-service.) The malware ceased ope...