A newly uncovered threat actor designated UNC5174 is behind a series of targeted intrusions exploiting zero-day and recently patched vulnerabilities, according to a detailed report by Mandiant. The group’s activity indicates both technical prowess...
A security researcher has published details and proof-of-concept (PoC) code for a Windows CVE-2023-36424 vulnerability that could be exploited to elevate privileges from a Medium Integrity Level to a High Integrity Level. With a...
A complex cyber-espionage campaign linked to the Iranian threat group Curious Serpens (also known as Peach Sandstorm, among other aliases) underscores the evolving techniques of state-backed hackers. The latest tool in their arsenal is...
The Apache Doris development team has released security updates to address two vulnerabilities in their popular real-time analytical database system. One of these security flaws, rated as “important,” could potentially allow attackers to execute...
Security experts at Imperva Threat Research have exposed a new evolution of the notorious Sysrv botnet. This latest variant exhibits sophisticated tactics, including the abuse of a Google subdomain to spread its payload –...
Cybersecurity researchers at Proofpoint have uncovered a new wave of targeted phishing attacks attributed to the Iran-aligned hacking group TA450. This campaign marks a shift in tactics for the group, with attackers now employing...
Security researchers at Horizon3 have released proof-of-concept (PoC) code for a severe vulnerability (CVE-2023-48788) in the Fortinet FortiClient Enterprise Management Server (EMS). With a CVSS score of 9.3, this SQL injection flaw could allow...
Cybersecurity experts at ESET have sounded the alarm on a significant increase in attacks powered by the AceCryptor platform. Long known as a cryptor-as-a-service (CaaS), enabling criminals to disguise their malware, AceCryptor has recently...
Recently, Micro Focus has addressed two serious vulnerabilities in OpenText PVCS Version Manager, a widely used version control system. These flaws, tracked as CVE-2024-1147 and CVE-2024-1148, could allow attackers to upload and download sensitive...
Security researcher Jaggar Henry at KoreLogic, Inc. has uncovered a severe vulnerability in the popular Artica Proxy appliance, leaving over 100,000 installations globally at risk. The vulnerability, tracked as CVE-2024-2054, could allow unauthenticated attackers...
Security experts at AhnLab Security Emergency Response Center (ASEC) have sounded the alarm on a widespread malware campaign employing the notorious StealC Infostealer. The malware is being distributed en masse, disguised as a legitimate...
A sophisticated new malware campaign dubbed “PhantomBlu” is on the prowl, preying on US-based organizations with a potent combination of evasive techniques and the notorious NetSupport RAT (Remote Access Trojan). Security researchers at Perception...
OSTE-Meta-Scanner This project aims to simplify the field of Dynamic Application Security Testing. The OSTE meta scanner is a comprehensive web vulnerability scanner that combines multiple DAST scanners, including Nikto Scanner, OWASP ZAP, Nuclei,...
Bob the Smuggler “Bob the Smuggler” is a tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip...
A major security flaw (CVE-2024-1800) has been discovered in the Progress Telerik Report Server, a widely used business reporting solution. This vulnerability, rated as critical with a CVSS score of 9.9, allows attackers to...
Cyber Security / Malware / Vulnerability
Attackers Exploit Decentralized CDN for Crypto Rewards
March 11, 2024
