CISA: CISA and FBI Release Known IOCs Associated with Androxgh0st Malware
CISA and FBI Release Known IOCs Associated with Androxgh0st Malware Today, CISA and the Federal Bureau of Investigation (FBI) released...
threatintel
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
US-CERT Vulnerability Summary for the Week of January 8, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
pyGPOAbuse – Partial Python Implementation Of SharpGPOAbuse
Python partial implementation of SharpGPOAbuse by@pkb1s This tool can be used when a controlled account can modify an existing GPO...
CISA: VMware Releases Security Advisory for Aria Operations
VMware Releases Security Advisory for Aria Operations VMware released a security advisory to address a vulnerability (CVE-2023-34063) in Aria Operations....
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
Combating IP Leaks into AI Applications with Free Discovery and Risk Reduction Automation
Wing Security announced today that it now offers free discovery and a paid tier for automated control over thousands of...
PAX PoS Terminal Flaw Could Allow Attackers to Tamper with Transactions
The point-of-sale (PoS) terminals from PAX Technology are impacted by a collection of high-severity vulnerabilities that can be weaponized by...
Medusa Locker Ransomware Victim: Stone, Avant & Daniels
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Akira Ransomware Victim: Becker Logistics
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
New iShutdown Method Exposes Hidden Spyware Like Pegasus on Your iPhone
Cybersecurity researchers have identified a "lightweight method" called iShutdown for reliably identifying signs of spyware on Apple iOS devices, including...
Feds Warn of AndroxGh0st Botnet Targeting AWS, Azure, and Office 365 Credentials
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) warned that threat actors deploying...
Webinar: The Art of Privilege Escalation – How Hackers Become Admins
In the digital age, the battleground for security professionals is not only evolving, it's expanding at an alarming rate. The...
GitHub Rotates Keys After High-Severity Vulnerability Exposes Credentials
GitHub has revealed that it has rotated some keys in response to a security vulnerability that could be potentially exploited...
Atlassian Warns Of Critical Rce Flaw In Older Confluence Versions
Atlassian Confluence Data Center and Confluence Server are vulnerable to a critical remote code execution (RCE) vulnerability that impacts versions...
The Dual Role Ai Plays In Cybersecurity How To Stay Ahead
There's a wide range of AI-enabled solutions available for various business use cases, and organizations are increasingly recognizing their value....
Pixiefail Flaws Impact Pxe Network Boot In Enterprise Systems
A set of nine vulnerabilities, collectively called 'PixieFail,' impact the IPv6 network protocol stack of Tianocore's EDK II, the open-source...
Majorca City Calvi Extorted For 11m In Ransomware Attack
The Calvià City Council in Majorca announced it was targeted by a ransomware attack on Saturday, which impacted municipal services....
Macos Info Stealers Quickly Evolve To Evade Xprotect Detection
Multiple information stealers for the macOS platform have demonstrated the capability to evade detection even when security companies follow and...
Google Fixes First Actively Exploited Chrome Zero Day Of 2024
Google has released security updates to fix the first Chrome zero-day vulnerability exploited in the wild since the start of...
Github Rotates Keys To Mitigate Impact Of Credential Exposing Flaw
GitHub rotated keys potentially exposed by a vulnerability patched in December that could let attackers access credentials within production containers via environment...
Citrix Warns Of New Netscaler Zero Days Exploited In Attacks
Citrix urged customers on Tuesday to immediately patch Netscaler ADC and Gateway appliances exposed online against two actively exploited zero-day...
Fbi Androxgh0st Malware Botnet Steals Aws Microsoft Credentials
CISA and the FBI warned today that threat actors using Androxgh0st malware are building a botnet focused on cloud credential...
Citrix, VMware, and Atlassian Hit with Critical Flaws — Patch ASAP!
Citrix is warning of two zero-day security vulnerabilities in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway)...
