Do Son, Author at Daily CyberSecurity • Page 380 of 733

Romanian National Sentenced to 20 Years for NetWalker Ransomware Attacks Operation IconCat, UNG0801 AFP cyberattack -NetWalker Ransomware VShell RAT

Operation IconCat, UNG0801 AFP cyberattack -NetWalker Ransomware VShell RAT

Romanian National Sentenced to 20 Years for NetWalker Ransomware Attacks

Do Son December 19, 2024

A Romanian man has been sentenced to 20 years in prison for his role in the devastating...

CVE-2024-12727 and More: Sophos Issues Urgent Firewall Security Update CVE-2024-12727 CVE-2024-12728 CVE-2024-12729

CVE-2024-12727 and More: Sophos Issues Urgent Firewall Security Update

Do Son December 19, 2024

Sophos has announced the resolution of three critical security vulnerabilities affecting its Sophos Firewall product, a widely...

PoC Exploit Released for Databricks Remote Code Execution Vulnerability CVE-2024-49194 CVE-2024-49194 PoC

PoC Exploit Released for Databricks Remote Code Execution Vulnerability CVE-2024-49194

Do Son December 19, 2024

A newly discovered vulnerability in the Databricks JDBC Driver (CVE-2024-49194) could allow attackers to remotely execute code...

Phishing Campaign Targets European Companies with Fake HubSpot and DocuSign Forms HubSpot phishing campaign

Phishing Campaign Targets European Companies with Fake HubSpot and DocuSign Forms

Do Son December 19, 2024

A recent report by Unit 42 researchers has uncovered an extensive phishing campaign targeting European companies, with...

CVE-2024-49576 and CVE-2024-47810: Foxit Addresses Remote Code Execution Flaws

Do Son December 19, 2024

Foxit has released a crucial security update for its widely used Foxit PDF Reader and Foxit PDF...

TA397 Leverages Sophisticated Spearphishing Techniques to Deploy Malware in Defense Sector

Do Son December 19, 2024

Proofpoint researchers have identified a new spearphishing campaign by TA397, a South Asia-based advanced persistent threat (APT)...

Malicious App Found on Amazon Appstore Masquerades as Health Tool Fiverr Data Leak Claude Code Leak Anthropic DMCA Takedown Coupang 33.7M Breach South Korea Data Leak Red Hat Breach, Customer Data Theft Farmers Insurance, Salesforce ESLint Plugin -Mamont Android banking Trojan

Fiverr Data Leak Claude Code Leak Anthropic DMCA Takedown Coupang 33.7M Breach South Korea Data Leak Red Hat Breach, Customer Data Theft Farmers Insurance, Salesforce ESLint Plugin -Mamont Android banking Trojan

Malicious App Found on Amazon Appstore Masquerades as Health Tool

Do Son December 19, 2024

McAfee Labs uncovered a malicious app on the Amazon Appstore that disguised itself as a simple health...

Beware of Malicious Extensions: Researcher Exposes VSCode Marketplace Threats MuddyWater APT ANY.RUN security incident

Beware of Malicious Extensions: Researcher Exposes VSCode Marketplace Threats

Do Son December 19, 2024

Researchers from ReversingLabs have highlighted a malicious campaign that bridges two critical ecosystems: Visual Studio Code (VSCode)...

CVE-2024-49775 (CVSS 9.8): Critical Vulnerability in Siemens UMC Exposes Systems to Remote Exploitation ROS# Path Traversal CVE-2026-41551 Siemens SIMATIC Auth Bypass, CVE-2025-40771 CVE-2024-22039 & CVE-2024-49775 CVE-2024-56336

ROS# Path Traversal CVE-2026-41551 Siemens SIMATIC Auth Bypass, CVE-2025-40771 CVE-2024-22039 & CVE-2024-49775 CVE-2024-56336

CVE-2024-49775 (CVSS 9.8): Critical Vulnerability in Siemens UMC Exposes Systems to Remote Exploitation

Do Son December 19, 2024

Siemens has disclosed a critical heap-based buffer overflow vulnerability (CVE-2024-49775) in its User Management Component (UMC), a...

cShell DDoS Bot Exploits Poorly Managed Linux SSH Servers exfiltrating AWS credentials - fabrice package

cShell DDoS Bot Exploits Poorly Managed Linux SSH Servers

Do Son December 19, 2024

AhnLab Security Intelligence Center (ASEC) has uncovered a new strain of DDoS malware called cShell, which specifically...

Earth Koshchei’s Rogue RDP Campaign: A Sophisticated APT Attack Targets Governments and Enterprises threat group Earth Koshchei

Earth Koshchei’s Rogue RDP Campaign: A Sophisticated APT Attack Targets Governments and Enterprises

Do Son December 19, 2024

Trend Micro has unveiled a large-scale rogue remote desktop protocol (RDP) campaign conducted by the threat group...

Weaponized Hacktivism: How Countries Use Activists for Cyber Warfare IARPA Research Security Data Abyss Report Telecom threat, Secret Service cybersecurity news - Cyber Espionage Campaign

IARPA Research Security Data Abyss Report Telecom threat, Secret Service cybersecurity news - Cyber Espionage Campaign

Weaponized Hacktivism: How Countries Use Activists for Cyber Warfare

Do Son December 19, 2024

The intersection of hacking and activism, commonly known as hacktivism, has transformed into a formidable force in...

Kaspersky Uncovers Active Exploitation of Fortinet Vulnerability CVE-2023-48788 FortiClient EMS exploitation Cisco FIRESTARTER Backdoor Arcane Door Campaign Dell RecoverPoint Zero-Day UNC6201 Espionage Notepad++ Compromise Supply Chain Attack Magento SessionReaper CVE-2025-54236 ShadowRay 2.0, AI-Generated Malware WordPress Auth Bypass, CVE-2025-5947 Exploited EcoStruxure Vulnerabilities, Industrial Control System UNC5820 - CVE-2014-2120 - CVE-2021-44207

FortiClient EMS exploitation Cisco FIRESTARTER Backdoor Arcane Door Campaign Dell RecoverPoint Zero-Day UNC6201 Espionage Notepad++ Compromise Supply Chain Attack Magento SessionReaper CVE-2025-54236 ShadowRay 2.0, AI-Generated Malware WordPress Auth Bypass, CVE-2025-5947 Exploited EcoStruxure Vulnerabilities, Industrial Control System UNC5820 - CVE-2014-2120 - CVE-2021-44207

Kaspersky Uncovers Active Exploitation of Fortinet Vulnerability CVE-2023-48788

Do Son December 19, 2024

In a recent investigation, Kaspersky’s Global Emergency Response Team (GERT) uncovered active exploitation of a patched vulnerability...

CVE-2023-34990 (CVSS 9.8): Critical Security Flaw Found in Fortinet FortiWLM CVE-2026-25089 CVE-2023-45590

CVE-2023-34990 (CVSS 9.8): Critical Security Flaw Found in Fortinet FortiWLM

Do Son December 18, 2024

Fortinet, a leading cybersecurity vendor, has issued urgent advisories regarding several critical vulnerabilities affecting its popular products,...

CVE-2024-51479: Next.js Authorization Bypass Vulnerability Affects Millions of Developers

Do Son December 18, 2024

A recently disclosed security vulnerability in Next.js, a popular React framework used by millions of developers worldwide,...

VIPKeyLogger: A New Infostealer Targeting Sensitive Data via Phishing Campaigns UAT-8099 BadIIS Malware Pacific Islands Forum Cyberattack

VIPKeyLogger: A New Infostealer Targeting Sensitive Data via Phishing Campaigns

Do Son December 18, 2024

Forcepoint researchers have uncovered an alarming rise in activity involving a new infostealer malware named VIPKeyLogger. Distributed...

Azure Key Vault Vulnerability: Exploiting Role Misconfigurations for Privilege Escalation Azure outage, Front Door Microsoft Azure Surveillance, Gaza Call Records Red Sea cables, Azure outage MFA enforcement Azure outage, Red Sea cables Azure Key Vault Azure, Surveillance

Azure outage, Front Door Microsoft Azure Surveillance, Gaza Call Records Red Sea cables, Azure outage MFA enforcement Azure outage, Red Sea cables Azure Key Vault Azure, Surveillance

Azure Key Vault Vulnerability: Exploiting Role Misconfigurations for Privilege Escalation

Do Son December 18, 2024

Datadog Security Labs has uncovered a potential privilege escalation method in Azure Key Vault that could grant...

CVE-2024-10205: Critical Authentication Bypass Flaw Found in Hitachi Infrastructure Analytics Advisor and Ops Center Analyzer

Do Son December 18, 2024

Hitachi Vantara has disclosed a critical authentication bypass vulnerability (CVE-2024-10205) affecting its Infrastructure Analytics Advisor and Ops...

“Mamont” Android Banking Trojan Disguised as Parcel Tracking App Targets Thousands in Russia Fiverr Data Leak Claude Code Leak Anthropic DMCA Takedown Coupang 33.7M Breach South Korea Data Leak Red Hat Breach, Customer Data Theft Farmers Insurance, Salesforce ESLint Plugin -Mamont Android banking Trojan

“Mamont” Android Banking Trojan Disguised as Parcel Tracking App Targets Thousands in Russia

Do Son December 18, 2024

Kaspersky Labs has uncovered a distribution campaign for the “Mamont” Android banking Trojan, a sophisticated piece of...

CVE-2024-12356 (CVSS 9.8): Critical Vulnerability in BeyondTrust PRA and RS Enables Remote Code Execution BeyondTrust Vulnerability CVE-2026-1731 CVE-2024-12356 - CVE-2025-0889 BeyondTrust Privilege Escalation, Windows Security

CVE-2024-12356 (CVSS 9.8): Critical Vulnerability in BeyondTrust PRA and RS Enables Remote Code Execution

Do Son December 18, 2024

A critical command injection vulnerability (CVE-2024-12356) has been discovered in BeyondTrust’s Privileged Remote Access (PRA) and Remote...