Over 22,000 CyberPanel Servers at Risk from Critical Vulnerabilities E...
Over 22,000 CyberPanel Servers at Risk from Critical Vulnerabilities Exploitation by PSAUX Ransomware Threat actor’s have been actively exploiting three Remote Code Execution (RCE) vulnerabilities in ...
Global Cybersecurity Coalition Brings Down Major Infostealer Malware O...
Global Cybersecurity Coalition Brings Down Major Infostealer Malware Operations In a recent milestone for international cybersecurity, authorities from around the world successfully dismantled the Red...
New Zero-Day Vulnerability in Windows Themes Threatens NTLM Security
New Zero-Day Vulnerability in Windows Themes Threatens NTLM Security A newly discovered zero-day vulnerability in Windows Themes files exposes users’ NTLM credentials, posing serious risks for remote ...
Free ISP Breach Compromises Millions, Threat Actor Threatens Data Leak
Free ISP Breach Compromises Millions, Threat Actor Threatens Data Leak Free, a leading French ISP and subsidiary of Iliad Group, confirmed a major data breach on October 26, 2024, impacting millions o...
Why SS7 Attacks Are the Biggest Threat to Mobile Security, Exploiting ...
Why SS7 Attacks Are the Biggest Threat to Mobile Security, Exploiting Global Telecom Networks You may or may not have heard of Signaling System 7 (SS7), but it’s the invisible force behind the phone c...
LoyLap Database Leak, New Jason RAT, and Supercell Exploit for Sale on...
LoyLap Database Leak, New Jason RAT, and Supercell Exploit for Sale on Dark Web In the past week, the SOCRadar Dark Web Team has uncovered a series of significant cyber threats, such as the alleged le...
Lazarus Exploits Google Chrome Zero-Day to Steal Cryptocurrency in ‘De...
Lazarus Exploits Google Chrome Zero-Day to Steal Cryptocurrency in ‘DeTankZone’ Campaign (CVE-2024-4947) Earlier in 2024, the North Korean Lazarus APT group exploited a critical zero-day vulnerability...
FortiManager Zero-Day ‘FortiJump’ Is Now Publicly Addressed (CVE-2024-...
FortiManager Zero-Day ‘FortiJump’ Is Now Publicly Addressed (CVE-2024-47575) [Update] October 25, 2024: “The Flaw Has Been Exploited Since June 2024, by Actors Now Tracked as UNC5820”, IOCs have also ...
LockBit, Conti, and BlackCat: 166 Ransomware Attacks Put Brazil in the...
LockBit, Conti, and BlackCat: 166 Ransomware Attacks Put Brazil in the Crosshairs in 2024 As the largest economy in Latin America and a key global player, Brazil’s diverse sectors—ranging from agricul...
Dark Web Market: Exodus Marketplace
Dark Web Market: Exodus Marketplace Hidden within the depths of the cybercriminal world lies Exodus Marketplace – one of the latest malicious platforms making waves for its established system of tradi...
Roundcube Vulnerability (CVE-2024-37383) Exploited in Phishing Attacks...
Roundcube Vulnerability (CVE-2024-37383) Exploited in Phishing Attacks Targeting Government Agencies for Credential Theft A vulnerability in the popular open-source Roundcube Webmail, CVE-2024-37383, ...
ScienceLogic SL1 0-Day from Rackspace Breach Added to CISA KEV (CVE-20...
ScienceLogic SL1 0-Day from Rackspace Breach Added to CISA KEV (CVE-2024-9537) A critical security vulnerability was recently discovered in the ScienceLogic SL1 Portal (formerly EM7), exploited as a z...
IntelBroker’s Alleged Cisco Breach: A Deep Dive into the Claims and Re...
IntelBroker’s Alleged Cisco Breach: A Deep Dive into the Claims and Responses On October 14, 2024, IntelBroker, the notorious threat actor and current admin of popular hacker forum, BreachForums, clai...
Critical VMware Vulnerability Patched Again in vCenter Server: CVE-202...
Critical VMware Vulnerability Patched Again in vCenter Server: CVE-2024-38812 In a recent security disclosure, VMware has patched a critical vulnerability (CVE-2024-38812) affecting its vCenter Server...
DeepFaceLive Tool, Royal Mail and Lyca Mobile Data Leaks, DDoS Attack ...
DeepFaceLive Tool, Royal Mail and Lyca Mobile Data Leaks, DDoS Attack on Sony NNC The SOCRadar Dark Web Team has uncovered a range of alarming cyber threats, including the distribution of a deepfake t...
Biggest Education Industry Attacks in 2024
Biggest Education Industry Attacks in 2024 The education sector is increasingly becoming a top target for cybercriminals, with a noticeable rise in cyberattacks aimed at schools and universities throu...
An Overview of Microsoft Digital Defense Report 2024
An Overview of Microsoft Digital Defense Report 2024 The Microsoft Digital Defense Report 2024 offers a detailed view of the increasingly intricate global cybersecurity landscape. The tech giant revea...
Dark Web Profile: Evil Corp
Dark Web Profile: Evil Corp Evil Corp, also known as Indrik Spider, is a pro-Russian hacktivist group that is involved in large-scale financial cyberattacks. Since 2007, Evil Corp has constantly evolv...
Critical Vulnerabilities Affecting GitHub Enterprise Server, Kubernete...
Critical Vulnerabilities Affecting GitHub Enterprise Server, Kubernetes Image Builder, and GiveWP Plugin Recently, several critical vulnerabilities have been disclosed, affecting widely used platforms...
Top 10 Breach and Attack Simulation (BAS) Software in 2024
Top 10 Breach and Attack Simulation (BAS) Software in 2024 In the cyber world, attackers are constantly seeking out new vulnerabilities and weaknesses to exploit. From phishing campaigns to advanced m...
Behind the Booking: Money Laundering and Scamming in the Sharing Econo...
Behind the Booking: Money Laundering and Scamming in the Sharing Economy The sharing economy refers to a market where individuals can exchange goods and services directly, often facilitated by online ...
Verizon Data Breach, European Credit Cards, and APEC & APERC Datab...
Verizon Data Breach, European Credit Cards, and APEC & APERC Databases Allegedly for Sale Recent reports from the SOCRadar Dark Web Team have uncovered a series of significant cyber threats. Among...
Biggest Manufacturing Industry Attacks 2024
Biggest Manufacturing Industry Attacks 2024 In 2024, the manufacturing sector will become a primary target for cyber attacks. According to data from the National Institute of Standards and Technology ...
The Rise of Initial Access Brokers on the Dark Web
The Rise of Initial Access Brokers on the Dark Web In recent years, the rise in cyber attacks has been directly linked to a growing network of Initial Access Brokers (IABs). These cybercriminals speci...
Major Cyber Attacks in Review: September 2024
Major Cyber Attacks in Review: September 2024 September 2024 saw a wave of major cyber attacks hitting critical sectors. BingX and Indodax, two prominent cryptocurrency platforms, suffered combined lo...