New Glibc Flaw Grants Attackers Root Access on Major Linux Distros
Malicious local attackers can obtain full root access on Linux machines by taking advantage of a newly disclosed security flaw...
OSINT
Chinese Hackers Exploiting VPN Flaws to Deploy KrustyLoader Malware
A pair of recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) virtual private network (VPN) devices have been exploited...
Vastaamo Hacker Traced Via Untraceable Monero Transactions Police Says
Julius Aleksanteri Kivimäki, the suspect believed to be behind an attack against one of Finland's largest psychotherapy clinics, Vastaamo, was...
A Mishandled Github Token Exposed Mercedes Benz Source Code
A mishandled GitHub token gave unrestricted access to Mercedes-Benz's internal GitHub Enterprise Service, exposing source code to the public. Mercedes-Benz...
Citibank Sued Over Failure To Defend Customers Against Hacks Fraud
New York Attorney General Letitia James sued Citibank over its alleged failure to defend customers against hacks and scams and...
Police Disrupt Grandoreiro Banking Malware Operation Make Arrests
The Federal Police of Brazil and cybersecurity researchers have disrupted the Grandoreiro banking malware operation, which has been targeting Spanish-speaking...
Us Charges Two More Suspects With Draftking Account Hacks
The U.S. Department of Justice arrested and charged two more suspects for their involvement in the hacking of almost 68,000 DraftKings accounts in...
Microsoft Teams Phishing Pushes Darkgate Malware Via Group Chats
New phishing attacks abuse Microsoft Teams group chat requests to push malicious attachments that install DarkGate malware payloads on victims'...
Online Ransomware Decryptor Helps Recover Partially Encrypted Files
CyberArk has created an online version of 'White Phoenix,' an open-source ransomware decryptor targeting operations using intermittent encryption. The company announced...
New Linux Glibc Flaw Lets Attackers Get Root On Major Distros
Unprivileged attackers can get root access on multiple major Linux distributions in default configurations by exploiting a newly disclosed local...
How Smbs Can Lower Their Risk Of Cyberattacks And Data Breaches
The Akira ransomware group is targeting small to medium-sized businesses (SMBs) - 80% of its victims, since March 2023, have been SMBs....
Active Exploitation of Multiple Vulnerabilities in Jenkins Products
Jenkins has released security updates addressing multiple vulnerabilities, including a critical (CVE-2024-23897) vulnerability and a high-severity (CVE-2024-23898) vulnerability in their...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Cisco Releases Security Advisory for Multiple Unified Communications and Contact Center Solutions Products
Cisco Releases Security Advisory for Multiple Unified Communications and Contact Center Solutions Products Cisco released a security advisory to address...
CISA: Mozilla Releases Security Updates for Thunderbird and Firefox
Mozilla Releases Security Updates for Thunderbird and Firefox Mozilla has released security updates to address vulnerabilities in Thunderbird and Firefox....
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple has released security updates for iOS and iPadOS, macOS, Safari, watchOS, and tvOS....
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on January 23, 2024. These...
Brute Ratel C4 Detected – 35[.]72[.]81[.]251:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
CISA: Guidance: Assembling a Group of Products for SBOM
Guidance: Assembling a Group of Products for SBOM Today, CISA published Guidance on Assembling a Group of Products created by the Software...
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on January 30, 2024. These...
CISA: New Mitigations to Defend Against Exploitation of Ivanti Connect Secure and Policy Secure Gateways
New Mitigations to Defend Against Exploitation of Ivanti Connect Secure and Policy Secure Gateways CISA is releasing this alert to...
CISA: Juniper Networks Releases Security Bulletin for J-Web in Junos OS SRX Series and EX Series
Juniper Networks Releases Security Bulletin for J-Web in Junos OS SRX Series and EX Series Juniper Networks released a security...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on January 25, 2024. These...
CISA: New Mitigations to Defend Against Exploitation of Ivanti Connect Secure and Policy Secure Gateways
New Mitigations to Defend Against Exploitation of Ivanti Connect Secure and Policy Secure Gateways CISA is releasing this alert to...
