Critical Vulnerabilities Affecting GitHub Enterprise Server, Kubernetes Image Builder, and GiveWP Plugin
Oct 16, 2024
Categories
Top Articles
Major Cyber Attacks in Review: September 2024
Oct 11, 2024
Internet Archive Data Breach and DDoS Attacks: What You Need to Know
Oct 10, 2024
Critical Vulnerabilities in Palo Alto Networks Expedition Could Expose Firewall Credentials, Patch Available
Oct 10, 2024
New Ivanti CSA Zero-Days Under Active Exploitation; Critical RCE in Connect Secure & Policy Secure
Oct 09, 2024
Aug 03, 2022
IBM Report: Data Breach Costs Higher Than Ever
IBM Report: Data Breach Costs Higher Than Ever IBM has published the Cost of a Data Breach report, which reveals how organizations from different industries are affected by data breaches and set futur...
Learn More
Aug 03, 2022
VMware Fixes Critical Vulnerabilities Including RCE and Authentication...
VMware Fixes Critical Vulnerabilities Including RCE and Authentication Bypass With the security update released Tuesday, VMware fixed ten vulnerabilities affecting some of its products. One is the aut...
Learn More
Aug 02, 2022
Banking Trojans Distributed on Google Play Store in DawDropper Campaig...
Banking Trojans Distributed on Google Play Store in DawDropper Campaign Cybersecurity researchers have uncovered a new campaign to distribute banking trojans on the Google Play Store. These ̶...
Learn More
Jul 29, 2022
Vulnerabilities in Atlassian Confluence Actively Exploited
Vulnerabilities in Atlassian Confluence Actively Exploited The critical hard-coded credentials flaw in Atlassian’s Questions For Confluence app (CVE-2022-26138) has been actively explo...
Learn More
Jul 28, 2022
Threats of Commercialized Malware: Knotweed
Threats of Commercialized Malware: Knotweed Microsoft associates the private sector offensive actor (PSOA) Knotweed with the Austrian spyware distributor DSIRF. DSIRF, founded in 2016, advertises...
Learn More
Jul 27, 2022
Ducktail Malware Targets Facebook Business Accounts via LinkedIn Phish...
Ducktail Malware Targets Facebook Business Accounts via LinkedIn Phishing Attack A new phishing attempt with the codename Ducktail is in progress and targets LinkedIn users who work in the field to hi...
Learn More
Jul 26, 2022
Zero-Day Security Flaw Exploited in PrestaShop Websites
Zero-Day Security Flaw Exploited in PrestaShop Websites Attackers discovered a way to exploit a vulnerability in PrestaShop servers. The actively exploited zero-day, CVE-2022-36408, allows attackers t...
Learn More
Jul 25, 2022
SonicWall Released Hotfix for Critical SQL Injection Flaw
SonicWall Released Hotfix for Critical SQL Injection Flaw A severe SQL injection vulnerability has been reported by network security vendor SonicWall in their security advisory. It affects the&nb...
Learn More
Jul 22, 2022
Cisco Released Patches for Multiple Nexus Dashboard Vulnerabilities
Cisco Released Patches for Multiple Nexus Dashboard Vulnerabilities Cisco announced that it has released security updates for vulnerabilities detected in the Nexus Dashboard. The security flaws i...
Learn More
Jul 21, 2022
Atlassian Patched Critical Vulnerability That Affects Confluence Serve...
Atlassian Patched Critical Vulnerability That Affects Confluence Servers Atlassian announced that it has released an update for a critical vulnerability affecting its Confluence Server and Data Center...
Learn More
Jul 20, 2022
Black Basta Ransomware Victim Knauf Forced to Stop Their Services
Black Basta Ransomware Victim Knauf Forced to Stop Their Services Construction materials manufacturer Knauf announced it was the target of a cyberattack by the Black Basta ransomware. The company decl...
Learn More
Jul 19, 2022
CISA Warned To Patch Actively Exploited Privilege Escalation Vulnerabi...
CISA Warned To Patch Actively Exploited Privilege Escalation Vulnerability On Windows Microsoft discovered a new zero-day vulnerability in Windows products and released a patch. The vulnerability lets...
Learn More
Jul 18, 2022
Juniper Networks Released Fixes For Critical Vulnerabilities
Juniper Networks Released Fixes For Critical Vulnerabilities CISA advised users and administrators to apply recently released fixes in Juniper Networks products due to several critical vulnerabil...
Learn More
Jul 08, 2022
Major Cyber Attacks in Review: June 2022
Major Cyber Attacks in Review: June 2022 You can follow the major cyber security attacks of each month on SOCRadar’s “Radar” page! We experienced critical days last month due to...
Learn More
Jul 07, 2022
Brute Ratel Utilized By Threat Actors In New Ransomware Operations
Brute Ratel Utilized By Threat Actors In New Ransomware Operations When Brute Ratel first appeared in the wild, almost no security solutions could detect it. To avoid being discovered by EDR ...
Learn More
Jul 06, 2022
NPM Packages Used In A Supply Chain Attack
NPM Packages Used In A Supply Chain Attack Hundreds of desktop applications and websites were compromised by an NPM supply chain attack that started in December 2021, using malicious NPM packages wit...
Learn More
Jul 06, 2022
RedAlert Ransomware Targets Windows and Linux VMware ESXi Servers
RedAlert Ransomware Targets Windows and Linux VMware ESXi Servers RedAlert is a new ransomware operation aiming to encrypt Windows and Linux VMWare ESXi servers on corporate networks using the NTRUEnc...
Learn More
Jul 04, 2022
Hundreds of Windows Networks are Infected with Raspberry Robin Worm
Hundreds of Windows Networks are Infected with Raspberry Robin Worm [Update] February 12, 2024: “Raspberry Robin Malware Advances with New One-Day Exploits” Microsoft reported that hundred...
Learn More
Jul 04, 2022
SOCRadar Denmark Threat Landscape Report: 9 Danish Companies Targeted ...
SOCRadar Denmark Threat Landscape Report: 9 Danish Companies Targeted Every 9 Days Cybercrime is a threat that closely concerns public authorities, companies, and residents in Denmark, as it is around...
Learn More
Jun 29, 2022
New Version of Raccoon Stealer Released
New Version of Raccoon Stealer Released The new version of Raccoon Stealer has been released. The first version was first seen in 2019 and served as MaaS (malware-as-a-service.) The malware ceased ope...
Learn More