General Security News
-
Researchers Takeover Unpatched 3rd-Party Antivirus Sandboxes via VirusTotal
Security researchers have disclosed a security issue that could have allowed attackers to weaponize the VirusTotal platform as a conduit to achieve...
-
Iranian Hackers Exploiting VMware RCE Bug to Deploy 'Core Impact' Backdoor
An Iranian-linked threat actor known as Rocket Kitten has been observed actively exploiting a recently patched VMware vulnerability to gain initial...
-
New BotenaGo Malware Variant Targeting Lilin Security Camera DVR Devices
A new variant of an IoT botnet called BotenaGo has emerged in the wild, specifically singling out Lilin security camera DVR devices to infect them...
-
Pwn2Own – Hackers earn $400K for 26 zero-day Exploits
There has been a lot of excitement surrounding Pwn2Own Miami for 2022 and it was an incredible three-day competition. Over $400,000 has been...
-
FBI Warns of BlackCat Ransomware That Breached Over 60 Organisations Worldwide
The U.S. Federal Bureau of Investigation (FBI) is sounding the alarm on the BlackCat ransomware-as-a-service (RaaS), which it said victimized at...
-
T-Mobile Admits Lapsus$ Hackers Gained Access to its Internal Tools and Source Code
Telecom company T-Mobile on Friday confirmed that it was the victim of a security breach in March after the LAPSUS$ mercenary gang managed to gain...
-
Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability
Atlassian has published a security advisory warning of a critical vulnerability in its Jira software that could be abused by a remote,...
-
Google kiện những kẻ lừa đảo vì chạy trang web ‘Kế hoạch lừa đảo cún con’
Vào hôm thứ hai Google đã tiết lộ rằng họ đang thực hiện một hành động pháp lý chống lại một tin tặc đã bị phát hiện điều hành các trang web...
-
Lỗ hổng LFI nghiêm trọng được phát hiện trong nền tảng blog Hashnode
Các chuyên gia đã tiết lộ một lỗ hổng file cục bộ ( Local file inclusion – LFI ) chưa từng được ghi nhận trước đây trong Hashnode , một nền...
-
Hive Ransomware Affiliate Attacking Microsoft Exchange Servers vulnerable to ProxyShell Flaw
The cybersecurity experts at Varonis security firm have recently discovered a Hive ransomware affiliate that has been deploying a variety of...
-
Lazarus Group Targeting Organizations in the Cryptocurrency and Blockchain
The FBI, CISA, and the U.S. Department of Treasury have issued a joint statement about the cryptocurrency theft and the tactics used by the...
-
A New Version of SolarMarker Malware Steals Passwords and Credit Card Data
SolarMarker’s latest version, which augments its capabilities, has been revealed recently by cybersecurity researchers PaloAlto Networks. While...