Daily CyberSecurity

CVE-2023-49954: Critical SQL Injection Vulnerability in 3CX CRM Integration

• Vulnerability

CVE-2023-49954: Critical SQL Injection Vulnerability in 3CX CRM Integration

Do Son December 16, 2023 0

In the fast-paced world of Internet communications, staying ahead of security threats is not just a choice...

Read More Read more about CVE-2023-49954: Critical SQL Injection Vulnerability in 3CX CRM Integration

IDEMIA’s Big Glitch: Critical Vulnerabilities Expose Biometric Terminals

• Vulnerability

IDEMIA’s Big Glitch: Critical Vulnerabilities Expose Biometric Terminals

Do Son December 16, 2023 0

IDEMIA, a prominent player in this field, recently issued an advisory that highlights critical vulnerabilities in its...

Read More Read more about IDEMIA’s Big Glitch: Critical Vulnerabilities Expose Biometric Terminals

PoC Released for SharePoint Pre-Auth RCE Chain (CVE-2023-29357 & CVE-2023-24955)

• Vulnerability

PoC Released for SharePoint Pre-Auth RCE Chain (CVE-2023-29357 & CVE-2023-24955)

Do Son December 16, 2023 0

Two vulnerabilities in Microsoft SharePoint Server have recently come under the spotlight, thanks to the detailed work...

Read More Read more about PoC Released for SharePoint Pre-Auth RCE Chain (CVE-2023-29357 & CVE-2023-24955)

What Organizations Need to Know About CVE-2023-45849 on Perforce Helix Core Server

• Vulnerability

What Organizations Need to Know About CVE-2023-45849 on Perforce Helix Core Server

Do Son December 15, 2023 0

A risk has brewed in the software world, with four critical vulnerabilities discovered in Perforce Helix Core...

Read More Read more about What Organizations Need to Know About CVE-2023-45849 on Perforce Helix Core Server

Web of Deceit: Unmasking the Hidden Threat of Stockpiled Domains

• Cyber Security

Web of Deceit: Unmasking the Hidden Threat of Stockpiled Domains

Do Son December 15, 2023 0

In the dynamic theater of cyber warfare, a new front has opened – the struggle against malicious...

Read More Read more about Web of Deceit: Unmasking the Hidden Threat of Stockpiled Domains

Vulnerable Clicks: PikaBot Hijacks Businesses with Malvertising

• Malware

Vulnerable Clicks: PikaBot Hijacks Businesses with Malvertising

Do Son December 15, 2023 0

PikaBot, a malware family that surfaced in early 2023, has swiftly morphed from being distributed via malspam...

Read More Read more about Vulnerable Clicks: PikaBot Hijacks Businesses with Malvertising

C&C in the Clouds: OilRig Group Hijacks Microsoft Services for Espionage

• Cyber Security
• Malware

C&C in the Clouds: OilRig Group Hijacks Microsoft Services for Espionage

Do Son December 15, 2023 0

According to a recent report by the cybersecurity firm ESET, the Iranian government-sponsored group OilRig deployed three...

Read More Read more about C&C in the Clouds: OilRig Group Hijacks Microsoft Services for Espionage

Crypto Crack: Malicious Code Lurks in Ledger dApps, Drains Millions

• Cyber Security

Crypto Crack: Malicious Code Lurks in Ledger dApps, Drains Millions

Do Son December 15, 2023 0

Ledger, a renowned manufacturer of hardware cryptocurrency wallets, has cautioned its clients about the risks associated with...

Read More Read more about Crypto Crack: Malicious Code Lurks in Ledger dApps, Drains Millions

750M Fake Accounts, $M in Scam: Microsoft Dismantles Fraud Storm-1152 Group

• Cyber Security

750M Fake Accounts, $M in Scam: Microsoft Dismantles Fraud Storm-1152 Group

Do Son December 15, 2023 0

Microsoft has announced a comprehensive operation against a cybercriminal syndicate known as Storm-1152, culpable for the creation...

Read More Read more about 750M Fake Accounts, $M in Scam: Microsoft Dismantles Fraud Storm-1152 Group

BianLian, White Rabbit, and Mario Ransomware Gangs Team Up for Mega-Extortion

• Cyber Security
• Malware

BianLian, White Rabbit, and Mario Ransomware Gangs Team Up for Mega-Extortion

Do Son December 15, 2023 0

In the shadowy world of cybercrime, alliances are formed not in boardrooms, but in the encrypted corners...

Read More Read more about BianLian, White Rabbit, and Mario Ransomware Gangs Team Up for Mega-Extortion

Researcher details 5 zero-day flaws in Qualcomm chipsets & ARM Mali GPU

• Vulnerability

Researcher details 5 zero-day flaws in Qualcomm chipsets & ARM Mali GPU

Do Son December 15, 2023 0

The blog title”Deep Dive: Qualcomm MSM & ARM Mali Kernel 0-day Exploit Attacks of October 2023″ by...

Read More Read more about Researcher details 5 zero-day flaws in Qualcomm chipsets & ARM Mali GPU

Open or Not, You’re Vulnerable: Email Flaw Hijacks PCs Without a Click

• Vulnerability

Open or Not, You’re Vulnerable: Email Flaw Hijacks PCs Without a Click

Do Son December 15, 2023 0

A new vulnerability has been found in the Windows MSHTML platform. The vulnerability, identified as CVE-2023-35628, carries...

Read More Read more about Open or Not, You’re Vulnerable: Email Flaw Hijacks PCs Without a Click

CVE-2023-47100: A Critical Security Vulnerability Patched Perl Programming Language

• Vulnerability

CVE-2023-47100: A Critical Security Vulnerability Patched Perl Programming Language

Do Son December 15, 2023 0

Perl is a highly capable, feature-rich programming language with over 36 years of development. Perl runs on...

Read More Read more about CVE-2023-47100: A Critical Security Vulnerability Patched Perl Programming Language

The Impact of Gaza Cybergang on Palestine & Israel

• Cyber Security
• Malware

The Impact of Gaza Cybergang on Palestine & Israel

Do Son December 14, 2023 0

Cyberattack has become a battleground for not just companies and individuals, but also geopolitical entities. A striking...

Read More Read more about The Impact of Gaza Cybergang on Palestine & Israel

NKAbuse: Go-Powered Malware Floods & Hacks, Targets Linux & Beyond

• Cyber Security
• Malware

NKAbuse: Go-Powered Malware Floods & Hacks, Targets Linux & Beyond

Do Son December 14, 2023 0

In the ever-evolving landscape of cyber threats, a new multiplatform menace has emerged, shaking the foundations of...

Read More Read more about NKAbuse: Go-Powered Malware Floods & Hacks, Targets Linux & Beyond

Mallox ransomware Exploits Old Flaws in MS-SQL & ODBC

• Malware

Mallox ransomware Exploits Old Flaws in MS-SQL & ODBC

Do Son December 14, 2023 0

In an ever-evolving cyber landscape, where the churn of malware families and actor groups is relentless, Mallox...

Read More Read more about Mallox ransomware Exploits Old Flaws in MS-SQL & ODBC

Every Other Day, a Breach: Data Nightmare Haunts Businesses

• Data Leak

Every Other Day, a Breach: Data Nightmare Haunts Businesses

Do Son December 14, 2023 0

In a world where one in every three businesses grapples with cybersecurity threats, the statistics on data...

Read More Read more about Every Other Day, a Breach: Data Nightmare Haunts Businesses

FakeSG Campaign, Akira Ransomware, AMOS Stealer: Kaspersky Uncovers Malware Variety

• Malware

FakeSG Campaign, Akira Ransomware, AMOS Stealer: Kaspersky Uncovers Malware Variety

Do Son December 13, 2023 0

In an ever-evolving digital landscape, the specter of malware looms large. Cybercriminals, armed with sophisticated tools and...

Read More Read more about FakeSG Campaign, Akira Ransomware, AMOS Stealer: Kaspersky Uncovers Malware Variety

Phishing for Profits: Attackers Mine Crypto & Spam Through OAuth Apps

• Cyber Security

Phishing for Profits: Attackers Mine Crypto & Spam Through OAuth Apps

Do Son December 13, 2023 0

In the evolving landscape of cyber threats, a new trend has emerged that challenges the conventional understanding...

Read More Read more about Phishing for Profits: Attackers Mine Crypto & Spam Through OAuth Apps

PyPI Poisoned: 116 Malicious Packages Target Windows and Linux

• Malware

PyPI Poisoned: 116 Malicious Packages Target Windows and Linux

Do Son December 12, 2023 0

A recent ESET research study has shed light on a disturbing development in the Python Package Index...

Read More Read more about PyPI Poisoned: 116 Malicious Packages Target Windows and Linux