General Security News
-
ShadowPad Modular Malware Platform Used by Chinese Hackers in High-profile Attacks
A very sophisticated and modular backdoor, ShadowPad has been discovered recently by the cybersecurity analysts of Pwc and Secureworks security...
-
Researchers Warn of a New Golang-based Botnet Under Continuous Development
Cybersecurity researchers have unpacked a new Golang-based botnet called Kraken that's under active development and features an array of backdoor...
-
Moses Staff Hackers Targeting Israeli Organizations for Cyber Espionage
The politically motivated Moses Staff hacker group has been observed using a custom multi-component toolset with the goal of carrying out espionage...
-
U.S. Says Russian Hackers Stealing Sensitive Data from Defense Contractors
State-sponsored actors backed by the Russian government regularly targeted the networks of several U.S. cleared defense contractors (CDCs) to...
-
Kali Linux 2022.1 Released with New Tools and Kali Everything Image
Offensive Security has recently released the new version of Kali Linux, Kali Linux 2022.1 that brings some exciting new features, and this...
-
Critical Magento 0-Day Let Attackers Execute Arbitrary Code
Security updates for Adobe Commerce and Magento Open Source have been released by Adobe. At the end of this January, Sansec reported a security...
-
High-Severity RCE Security Bug Reported in Apache Cassandra Database Software
Researchers have revealed details of a now-patched high-severity security vulnerability in Apache Cassandra that, if left unaddressed, could be...
-
Facebook Agrees to Pay $90 Million to Settle Decade-Old Privacy Violation Case
Meta Platforms has agreed to pay $90 million to settle a lawsuit over the company's use of cookies to allegedly track Facebook users' internet...
-
Researchers Link ShadowPad Malware Attacks to Chinese Ministry and PLA
Cybersecurity researchers have detailed the inner workings of ShadowPad, a sophisticated and modular backdoor that has been adopted by a growing...
-
Can You Rely on MDR For Penetration Testing?
Penetration testing (pentesting) simulates an attack directed at a specific target. The goal is to help an organization identify exploitable...
-
New Chrome 0-Day Bug Under Active Attack – Update Your Browser ASAP!
Google on Monday rolled out fixes for eight security issues in the Chrome web browser, including a high-severity vulnerability that's being...
-
Hackers Injected Credit Card Skimmers to 500 Stores Running With Magento
On January 25, Sansec posted a tweet that nearly 300+ e-commerce stores were infected with malware. Sansec detected a massive data breach at 500...