Fbi Androxgh0st Malware Botnet Steals Aws Microsoft Credentials
CISA and the FBI warned today that threat actors using Androxgh0st malware are building a botnet focused on cloud credential...
cybersecurity
Over 178k Sonicwall Firewalls Vulnerable To Dos Potential Rce Attacks
Security researchers have found over 178,000 SonicWall next-generation firewalls (NGFW) with the management interface exposed online are vulnerable to denial-of-service...
Windows Smartscreen Flaw Exploited To Drop Phemedrone Malware
A Phemedrone information-stealing malware campaign exploits a Microsoft Defender SmartScreen vulnerability (CVE-2023-36025) to bypass Windows security prompts when opening URL...
Latest Adblock Update Causes Massive Youtube Performance Hit
Adblock and Adblock Plus users report performance issues on YouTube, initially blamed on Google but later determined to be an...
Ivanti Connect Secure Zero Days Now Under Mass Exploitation
Two zero-day vulnerabilities affecting Ivanti's Connect Secure VPN and Policy Secure network access control (NAC) appliances are now under mass...
Us Court Docs Expose Fake Antivirus Renewal Phishing Tactics
In a seizure warrant application, the U.S. Secret Service sheds light on how threat actors stole $34,000 using fake antivirus...
Researchers Uncover Major Surge in Global Botnet Activity
Security researchers have discovered a significant increase in global botnet activity between December 2023 and the first week of January...
Grapheneos Frequent Android Auto Reboots Block Firmware Exploits
The GrapheneOS team behind the privacy and security-focused Android-based operating system with the same name is suggesting that Android should introduce an auto-reboot...
Save Up To 315 On Data Privacy Tools With Adguard Vpn
A virtual private network (VPN) is a foundational data privacy tool for both professional life and your day-to-day browsing. AdGuard...
Hacker Spins Up 1 Million Virtual Servers To Illegally Mine Crypto
A 29-year-old man in Ukraine was arrested this week for using hacked accounts to create 1 million virtual servers used...
Gitlab Warns Of Critical Zero Click Account Hijacking Vulnerability
GitLab has released security updates for both the Community and Enterprise Edition to address two critical vulnerabilities, one of them...
Ivanti Connect Secure Zero Days Exploited To Deploy Custom Malware
Hackers have been exploiting the two zero-day vulnerabilities in Ivanti Connect Secure disclosed this week since early December to deploy multiple...
The Week In Ransomware January 12th 2024 Targeting Homeowners Data
Mortgage lenders and related companies are becoming popular targets of ransomware gangs, with four companies in this sector recently attacked....
Cisa Critical Microsoft Sharepoint Bug Now Actively Exploited
CISA warns that attackers are now exploiting a critical Microsoft SharePoint privilege escalation vulnerability that can be chained with another...
Juniper Warns Of Critical Rce Bug In Its Firewalls And Switches
Juniper Networks has released security updates to fix a critical pre-auth remote code execution (RCE) vulnerability in its SRX Series...
Bitwarden Adds Passkey Support To Log Into Web Password Vaults
The open-source Bitwarden password manager has announced that all users can now log into their web vaults using a passkey...
Halara Probes Breach After Hacker Leaks Data For 950 000 People
Popular athleisure clothing brand Halara is investigating a data breach after the alleged data of almost 950,000 customers was leaked...
Framework Discloses Data Breach After Accountant Gets Phished
Framework Computer disclosed a data breach exposing the personal information of an undisclosed number of customers after Keating Consulting Group,...
New Balada Injector Campaign Infects 6 700 WordPress Sites
A little over 6,700 WordPress websites using a vulnerable version of the Popup Builder plugin have been infected with the...
Finland Warns Of Akira Ransomware Wiping Nas And Tape Backup Devices
The Finish National Cybersecurity Center (NCSC-FI) is informing of increased Akira ransomware activity in December, targeting companies in the country and wiping backups....
Microsoft Shares Script To Update Windows 10 Winre With Bitlocker Fixes
Microsoft has released a PowerShell script to automate updating the Windows Recovery Environment (WinRE) partition in order to fix CVE-2024-20666,...
Over 150k WordPress Sites At Takeover Risk Via Vulnerable Plugin
Two vulnerabilities impacting the POST SMTP Mailer WordPress plugin, an email delivery tool used by 300,000 websites, could help attackers take...
Pro Ukraine Hackers Breach Russian Isp In Revenge For Kyivstar Attack
A pro-Ukraine hacktivist group named ‘Blackjack’ has claimed a cyberattack against Russian provider of internet services M9com as a direct...
Fidelity National Financial Hackers Stole Data Of 13 Million People
Fidelity National Financial (FNF) has confirmed that a November cyberattack (claimed by the BlackCat ransomware gang) has exposed the data...
