In light of a severe vulnerability discovered in Apache Struts, Cisco Systems has elucidated the impact on its products. The culprit, a path traversal vulnerability identified as CVE-2023-50164, has sent...
WordPress powers over 43% of all websites, making it a prime target for cyberattacks. Fortunately, plugins like WP Clone offer a valuable line of defense, streamlining backups and migrations. But...
A vulnerability has recently been identified in Apache Guacamole, an HTML5 web application that provides access to desktop environments using remote desktop protocols (such as VNC or RDP). Guacamole is...
The U.S. Department of Justice has announced the FBI’s successful infiltration into the infrastructure of the ransomware group ALPHV (BlackCat). This operation enabled agents to monitor the hackers’ actions and...
Interpol announced that the international law enforcement operation “Operation HAECHI IV,” aimed at combating financial crimes online, led to the arrest of nearly 3,500 individuals and the seizure of assets...
Cybersecurity specialists at Qi An Xin have unearthed malicious LNK files specifically targeting users in South Korea. Upon execution, these files unfurled decoy documents and VB scripts. Notably, one such...
Apache Superset, a cutting-edge business intelligence web application, has recently been under the cybersecurity spotlight due to three significant vulnerabilities. These flaws pose risks ranging from privilege escalation to SQL...
Sophos X-Ops is warning the hospitality industry that the “Inhospitality” malspam campaign represents a cunning blend of social engineering and malware, specifically targeting the hospitality industry. By capitalizing on the...
In the evolving landscape of cyber threats, the Iranian espionage group Seedworm (also known as Muddywater) has emerged as a sophisticated and elusive adversary. Operating since at least 2017, Seedworm...
Researchers from ReversingLabs have identified two novel techniques: one involves misusing GitHub Gists, and the other utilizes git commit messages for issuing commands. Traditionally, public services were used to fetch...
In a recent revelation, cybersecurity firm Resecurity has uncovered a sinister fraudulent campaign orchestrated by the notorious Smishing Triad Gang. This intricate web of deceit involves impersonating the United Arab...
Data collected from the servers of Apple TestFlight service between 2012 and 2015 has been leaked online. The breach, which has been dubbed “TeraLeak” due to its enormous scale, has...
Recently, a significant security vulnerability in the Linux NetFilter kernel has been discovered, allowing unprivileged local users to escalate their privileges, allowing complete control over a system. This flaw, designated...
In a proactive response to a newly discovered security flaw, Adobe has taken decisive action by releasing an emergency patch update for its widely-used web form creation tool, “Adobe Experience...
In November 2023, the cybersecurity landscape faced a formidable challenge when the AhnLab Security Emergency Response Center (ASEC) reported the exploitation of a critical vulnerability in Apache ActiveMQ (CVE-2023-46604). This...
Support Securityonline.info site. Thanks!
