Critical QNAP Vulnerabilities in Notes Station 3 and QuRouter Demand Immediate Patching (CVE-2024-38645, CVE-2024-38643, CVE-2024-48860)
Nov 26, 2024
Categories
Top Articles
Perfctl Campaign Exploits Millions of Linux Servers for Crypto Mining and Proxyjacking
Nov 25, 2024
NodeStealer’s Evolution: A Growing Threat to Facebook Accounts and Beyond
Nov 22, 2024
Financial Software Company Finastra Investigates Recent Security Incident
Nov 21, 2024
Privilege Escalation Risks in ‘needrestart’ Utility Threaten Linux Systems; OSS-Fuzz Finds 26 Hidden Flaws
Nov 21, 2024
Jul 21, 2022
Atlassian Patched Critical Vulnerability That Affects Confluence Serve...
Atlassian Patched Critical Vulnerability That Affects Confluence Servers Atlassian announced that it has released an update for a critical vulnerability affecting its Confluence Server and Data Center...
Learn More
Jul 20, 2022
Black Basta Ransomware Victim Knauf Forced to Stop Their Services
Black Basta Ransomware Victim Knauf Forced to Stop Their Services Construction materials manufacturer Knauf announced it was the target of a cyberattack by the Black Basta ransomware. The company decl...
Learn More
Jul 19, 2022
CISA Warned To Patch Actively Exploited Privilege Escalation Vulnerabi...
CISA Warned To Patch Actively Exploited Privilege Escalation Vulnerability On Windows Microsoft discovered a new zero-day vulnerability in Windows products and released a patch. The vulnerability lets...
Learn More
Jul 18, 2022
Juniper Networks Released Fixes For Critical Vulnerabilities
Juniper Networks Released Fixes For Critical Vulnerabilities CISA advised users and administrators to apply recently released fixes in Juniper Networks products due to several critical vulnerabil...
Learn More
Jul 08, 2022
Major Cyber Attacks in Review: June 2022
Major Cyber Attacks in Review: June 2022 You can follow the major cyber security attacks of each month on SOCRadar’s “Radar” page! We experienced critical days last month due to...
Learn More
Jul 07, 2022
Brute Ratel Utilized By Threat Actors In New Ransomware Operations
Brute Ratel Utilized By Threat Actors In New Ransomware Operations When Brute Ratel first appeared in the wild, almost no security solutions could detect it. To avoid being discovered by EDR and antiv...
Learn More
Jul 06, 2022
NPM Packages Used In A Supply Chain Attack
NPM Packages Used In A Supply Chain Attack Hundreds of desktop applications and websites were compromised by an NPM supply chain attack that started in December 2021, using malicious NPM packages wit...
Learn More
Jul 06, 2022
RedAlert Ransomware Targets Windows and Linux VMware ESXi Servers
RedAlert Ransomware Targets Windows and Linux VMware ESXi Servers RedAlert is a new ransomware operation aiming to encrypt Windows and Linux VMWare ESXi servers on corporate networks using the NTRUEnc...
Learn More
Jul 04, 2022
Hundreds of Windows Networks are Infected with Raspberry Robin Worm
Hundreds of Windows Networks are Infected with Raspberry Robin Worm [Update] February 12, 2024: “Raspberry Robin Malware Advances with New One-Day Exploits” Microsoft reported that hundred...
Learn More
Jul 04, 2022
SOCRadar Denmark Threat Landscape Report: 9 Danish Companies Targeted ...
SOCRadar Denmark Threat Landscape Report: 9 Danish Companies Targeted Every 9 Days Cybercrime is a threat that closely concerns public authorities, companies, and residents in Denmark, as it is around...
Learn More
Jun 29, 2022
New Version of Raccoon Stealer Released
New Version of Raccoon Stealer Released The new version of Raccoon Stealer has been released. The first version was first seen in 2019 and served as MaaS (malware-as-a-service.) The malware ceased ope...
Learn More
Jun 28, 2022
New Banking Trojan Revive Targets BBVA Customers
New Banking Trojan Revive Targets BBVA Customers The newly emerged Android banking trojan Revive mimics BBVA bank’s two-factor authentication app. Although still in early development, the m...
Learn More
Jun 27, 2022
Malicious Python Packages Steal AWS Keys
Malicious Python Packages Steal AWS Keys Cybersecurity researchers have discovered that some Python packages available in the PyPI repositories engage in malicious activity. Malicious packets send som...
Learn More
Jun 24, 2022
Threat Actors Target VMware Servers by Exploiting Log4Shell Vulnerabil...
Threat Actors Target VMware Servers by Exploiting Log4Shell Vulnerability The Log4Shell RCE vulnerability with code CVE-2021-44228 continues to be exploited by state-backed threat actors. Attackers ut...
Learn More
Jun 21, 2022
NTLM Relay Attack Leads to Windows Domain Takeover
NTLM Relay Attack Leads to Windows Domain Takeover A new DFSCoerce NTLM Relay attack has been discovered on Windows. Threat actors can take over Microsoft Active Directory Certificate Services (AD CS)...
Learn More
Jun 20, 2022
SOCRadar Exhibiting Extended Threat Intelligence Solution at InfoSecur...
SOCRadar Exhibiting Extended Threat Intelligence Solution at InfoSecurity Europe 2022 SOCRadar will be at InfoSecurity Europe, held at London ExCel this week from 21 to 23 June. We are very excited to...
Learn More
Jun 20, 2022
BRATA Malware Becomes an Advanced Threat
BRATA Malware Becomes an Advanced Threat Originally a banking trojan, BRATA acquires new capabilities and becomes a more advanced threat. Malware can now be much more effective at stealing user i...
Learn More
Jun 17, 2022
DriftingCloud APT Group Exploits Zero-Day In Sophos Firewall
DriftingCloud APT Group Exploits Zero-Day In Sophos Firewall Cybersecurity researchers have revealed that Sophos Firewall has been actively exploited by DriftingCloud APT group since early March. Appa...
Learn More
Jun 16, 2022
Cisco Fixed Critical Authentication Bypass Vulnerability Affecting Som...
Cisco Fixed Critical Authentication Bypass Vulnerability Affecting Some Products Cisco fixed a vulnerability discovered in the external authentication functionality of Secure Email and Web Manager. Th...
Learn More
Jun 15, 2022
Microsoft June 2022 Patch Tuesday Fixes 55 Vulnerabilities Including F...
Microsoft June 2022 Patch Tuesday Fixes 55 Vulnerabilities Including Follina Microsoft has released the June 2022 Patch Tuesday. The company announced that it had patched 55 vulnerabilities, including...
Learn More
