Red TIM Research discovers a Command Injection with a 9,8 score on Resi
During the bug hunting activity, Red Team Research (RTR) detected 2 zero-day bugs on GEMINI-NET, a RESI Informatica solution. It’s...
News
Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies
Resecurity, Inc. (USA) has identified an increase in activity within hacktivist groups conducted by a new group called “Cyber Spetsnaz”....
Tor’s (security) role in the future of the Internet, with Alec Muffett
Tor has a storied reputation in the world of online privacy. The open-source project lets people browse the Internet more...
PoC exploits for Atlassian CVE-2022-26134 RCE flaw released online
Proof-of-concept exploits for the critical CVE-2022-26134 vulnerability in Atlassian Confluence and Data Center servers are available online. Proof-of-concept exploits for...
Security Affairs newsletter Round 368 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for...
Hackers stole over $250,000 in Ethereum from Bored Ape Yacht Club
Hackers have stolen over $250,000 in Ethereum from Bored Ape Yacht Club (BAYC), this is the third security breach it...
Atlassian rolled out fixes for Confluence zero-day actively exploited in the wild
Atlassian has addressed on Friday an actively exploited critical remote code execution flaw (CVE-2022-26134) in Confluence Server and Data Center...
Anonymous: Operation Russia after 100 days of war
Operation Russia continues, albeit much more slowly than last month, RKPLaw, Vyberi Radio, and Metprom Group are the last victims....
GitLab addressed critical account take over via SCIM email change
GitLab addresses a critical security vulnerability, tracked as CVE-2022-1680, that could be exploited by an attacker to take over users’...
LuoYu APT delivers WinDealer malware via man-on-the-side attacks
Chinese LuoYu Hackers Using Man-on-the-Side Attacks to Deploy WinDealer Backdoor An “extremely sophisticated” China-linked APT tracked as LuoYu was delivering malware...
Tutorial: How to Build Your First Node.js gRPC API
Compared to other API technologies like REST and GraphQL, gRPC is lightweight and exceptionally robust, thanks in large part to...
Ransomware: May 2022 review
The Malwarebytes Threat Intelligence team monitors the threat landscape continuously and produces monthly ransomware reports based on a mixture of...
Clipminer Botnet already allowed operators to make at least $1.7 Million
The Clipminer botnet allowed operators to earn at least $1.7 million, according to a report published by security researchers at...
Unpatched Atlassian Confluence vulnerability is actively exploited
Researchers found a vulnerability in Atlassian Confluence by conducting an incident response investigation. Atlassian rates the severity level of this...
Internet Safety Month: Avoiding the consequences of unsafe Internet practices
Welcome to Internet Safety Month, a once-a-year event in which you, the public, are told that anywhere between three and...
Parental controls: What they can and can’t do for you
Parental controls can be useful to limit the risks your children run into online, but you should know up front...
Alert! Unpatched critical Atlassian Confluence Zero-Day RCE flaw actively exploited
Atlassian warned of an actively exploited critical unpatched remote code execution flaw (CVE-2022-26134) in Confluence Server and Data Center products....
Microsoft blocked Polonium attacks against Israeli organizations
Microsoft blocked an attack activity aimed at Israeli organizations attributed to a previously unknown Lebanon-based hacking group tracked as POLONIUM....
WinDealer dealing on the side
Introduction LuoYu is a lesser-known threat actor that has been active since 2008. It primarily goes after targets located in...
LockBit ransomware attack impacted production in a Mexican Foxconn plant
LockBit ransomware gang claimed responsibility for an attack against the electronics manufacturing giant Foxconn that impacted production in Mexico The...
Introducing EDR for Linux: Remediating and isolating threats on Linux servers
We’re excited to announce our new EDR for Linux offering, which extends our advanced protection and response capabilities to Linux...
Conti leaked chats confirm that the gang’s ability to conduct firmware-based attacks
The analysis of the internal chats of the Conti ransomware group revealed the gang was working on firmware attack techniques. The...
Introducing Malwarebytes DNS Filtering module: How to block sites and create policy rules
We’re happy to announce Malwarebytes DNS Filtering, a new module for the Nebula platform which helps block access to malicious...
An international police operation dismantled FluBot spyware
An international law enforcement operation involving 11 countries resulted in the takedown of the FluBot Android malware. An international law...
