News

Vulnerable Microsoft SQL Server are being targeted by hackers

• Cyber Security

Vulnerable Microsoft SQL Server are being targeted by hackers

Ddos February 25, 2022

Threat analysts have observed that hackers are installing Cobalt Strike beacons in vulnerable Microsoft SQL Server to...

Read More Read more about Vulnerable Microsoft SQL Server are being targeted by hackers

Asustor NAS devices were hit by Deadbolt ransomware

• Malware

Asustor NAS devices were hit by Deadbolt ransomware

Ddos February 24, 2022

Asustor, a NAS server manufacturer under ASUS, has been attacked by Deadbolt ransomware, and many users have...

Read More Read more about Asustor NAS devices were hit by Deadbolt ransomware

CVE-2022-24112: Apache APISIX Remote Code Execution Vulnerability Alert

• Vulnerability

CVE-2022-24112: Apache APISIX Remote Code Execution Vulnerability Alert

Ddos February 16, 2022

Recently, Apache APISIX officially released a security bulletin, disclosing a remote code execution vulnerability (CVE-2022-24112) in Apache...

Read More Read more about CVE-2022-24112: Apache APISIX Remote Code Execution Vulnerability Alert

Chrome releases emergency security update to fix CVE-2022-0609 flaw

• Vulnerability

Chrome releases emergency security update to fix CVE-2022-0609 flaw

Ddos February 15, 2022

Google released a security bulletin to reveal the CVE-2022-0609 vulnerability, which is a major security threat to...

Read More Read more about Chrome releases emergency security update to fix CVE-2022-0609 flaw

CVE-2022-22620: Safari web browser arbitrary code execution vulnerability alert

• Vulnerability

CVE-2022-22620: Safari web browser arbitrary code execution vulnerability alert

Ddos February 11, 2022

After half a month, Apple updated the official version of iOS 15.3.1 recently. According to the released...

Read More Read more about CVE-2022-22620: Safari web browser arbitrary code execution vulnerability alert

PHP Everywhere WordPress Plugin Remote Code Execution Alert

• Vulnerability

PHP Everywhere WordPress Plugin Remote Code Execution Alert

Ddos February 11, 2022

PHP Everywhere is an open-source WordPress plugin, that enables PHP code everywhere in your WordPress installation. Using...

Read More Read more about PHP Everywhere WordPress Plugin Remote Code Execution Alert

RedLine malware pretends to be a Windows 11 upgrade installers

• Malware

RedLine malware pretends to be a Windows 11 upgrade installers

Ddos February 9, 2022

Security researchers have noticed cases where hackers began to distribute malware to Windows 10 users under the...

Read More Read more about RedLine malware pretends to be a Windows 11 upgrade installers

Intel fixes 16 new BIOS-related vulnerabilities

• Vulnerability

Intel fixes 16 new BIOS-related vulnerabilities

Ddos February 9, 2022

Intel recently released a new security advisory that contains 16 new BIOS-related vulnerabilities. Attackers can exploit these...

Read More Read more about Intel fixes 16 new BIOS-related vulnerabilities

Microsoft reveals some details of the Russian hacking group’s attack on Ukraine

• Cyber Security

Microsoft reveals some details of the Russian hacking group’s attack on Ukraine

Ddos February 8, 2022

Due to geopolitical issues, Russia is currently in a tense confrontation with Ukraine and NATO. In addition...

Read More Read more about Microsoft reveals some details of the Russian hacking group’s attack on Ukraine

[PoC] CVE-2022-0185: Linux Kernel Privilege Escalation Vulnerability Alert

• Vulnerability

[PoC] CVE-2022-0185: Linux Kernel Privilege Escalation Vulnerability Alert

Ddos January 30, 2022

Recently, security researcher Rory McCune has disclosed a high-risk buffer overflow vulnerability (CVE-2022-0185) in the Linux kernel...

Read More Read more about [PoC] CVE-2022-0185: Linux Kernel Privilege Escalation Vulnerability Alert

DeadBolt ransomware is threatening QNAP users

• Malware

DeadBolt ransomware is threatening QNAP users

Ddos January 30, 2022

NAS maker QNAP continues to issue security alerts, and QNAP says ransomware called DeadBolt is looking for...

Read More Read more about DeadBolt ransomware is threatening QNAP users

Zerodium increases Outlook zero-click bug bounty to $400,000

• Vulnerability

Zerodium increases Outlook zero-click bug bounty to $400,000

Ddos January 30, 2022

The US security company Zerodium has announced that it will increase the Microsoft Outlook zero-click vulnerability bounty...

Read More Read more about Zerodium increases Outlook zero-click bug bounty to $400,000

Microsoft reveals massive DDoS attack in November 2021: Peak traffic up to 3.47Tbps

• Cyber Security

Microsoft reveals massive DDoS attack in November 2021: Peak traffic up to 3.47Tbps

Ddos January 30, 2022

Microsoft Azure recently released the platform’s DDoS attack report for the Q3 and Q4 quarters of 2021....

Read More Read more about Microsoft reveals massive DDoS attack in November 2021: Peak traffic up to 3.47Tbps

[PoC] CVE-2021-4034: Linux Polkit Privilege Escalation Vulnerability Alert

• Vulnerability

[PoC] CVE-2021-4034: Linux Polkit Privilege Escalation Vulnerability Alert

Ddos January 26, 2022

On January 26, 2022, Linux issued a risk notice of pkexec, the vulnerability number is CVE-2021-4034, the...

Read More Read more about [PoC] CVE-2021-4034: Linux Polkit Privilege Escalation Vulnerability Alert

Hackers attack Belarusian Railway systems

• Cyber Security

Hackers attack Belarusian Railway systems

Ddos January 24, 2022

Due to geopolitical issues Ukraine and behind NATO and Russia are currently facing off, and Belarus, sandwiched...

Read More Read more about Hackers attack Belarusian Railway systems

Google Drive warns of files with security issues

• Malware

Google Drive warns of files with security issues

Ddos January 24, 2022

Google has previously issued a policy change reminder, and if users store or use files with security...

Read More Read more about Google Drive warns of files with security issues

Crypto.com was under cyber attack, lost about $30 million in Bitcoin and Ethereum

• Cyber Security

Crypto.com was under cyber attack, lost about $30 million in Bitcoin and Ethereum

Ddos January 21, 2022

The well-known cryptocurrency exchange Crypto.com was reported to be under a cyber attack on January 17, but...

Read More Read more about Crypto.com was under cyber attack, lost about $30 million in Bitcoin and Ethereum

CVE-2022-23305: Apache Log4j V1 SQL injection vulnerability alert

• Vulnerability

CVE-2022-23305: Apache Log4j V1 SQL injection vulnerability alert

Ddos January 20, 2022

On January 18, Apache released a security bulletin that disclosed the SQL injection in JDBC Appender vulnerability (CVE-2022-23305),...

Read More Read more about CVE-2022-23305: Apache Log4j V1 SQL injection vulnerability alert

CVE-2022-23302: Apache Log4j 1.x remote code execution vulnerability alert

• Vulnerability

CVE-2022-23302: Apache Log4j 1.x remote code execution vulnerability alert

Ddos January 19, 2022

On January 18, Apache released a security bulletin that disclosed the deserialization of untrusted data in JMSSink...

Read More Read more about CVE-2022-23302: Apache Log4j 1.x remote code execution vulnerability alert

CVE-2022-23307: Log4j 1 Deserialization Vulnerability Alert

• Vulnerability

CVE-2022-23307: Log4j 1 Deserialization Vulnerability Alert

Ddos January 19, 2022

On January 18, Apache released a security bulletin that disclosed Log4j deserialization vulnerability (CVE-2022-23307), which affected the...

Read More Read more about CVE-2022-23307: Log4j 1 Deserialization Vulnerability Alert