The SUSE Security Team has uncovered two vulnerabilities in the Linux Tuned daemon, a critical tool for runtime hardware and kernel optimization. These vulnerabilities, tracked as CVE-2024-52336 (CVSS 7.8) and...
Check Point Research has identified the misuse of the Godot game engine—a popular, open-source tool for game development—as a platform for distributing malware. Dubbed GodLoader, this novel technique highlights how...
CVE-2024-47533 exposes Cobbler servers to unauthorized access and control, enabling attackers to manipulate system configurations. A critical vulnerability has been discovered in Cobbler, a popular Linux installation server used for...
Sekoia’s Threat Detection & Research (TDR) team uncovers a Linux variant of the Helldown ransomware, expanding the threat landscape. The Helldown ransomware group, previously known for targeting Windows systems, has...
Google has released Chrome version 131, addressing a range of security vulnerabilities, including one classified as “high severity.” The new version, 131.0.6778.69 for Linux and 131.0.6778.69/.70 for Windows and Mac,...
The Securonix Threat Research team has exposed a sophisticated malware campaign dubbed “CRON#TRAP,” which stages attacks within a lightweight emulated Linux environment. By leveraging legitimate tools like QEMU, a popular...
A recent report from the Checkmarx Security Research Team reveals a sophisticated supply chain attack targeting the NPM ecosystem. The attack involves a malicious package, jest-fet-mock, which uses Ethereum smart...
The BackBox Team has just unleashed the latest iteration of their popular penetration testing and security auditing platform, BackBox Linux 9, codenamed “Noble Numbat.” This release is packed with updates...
Google has just released an urgent update for its Chrome browser, addressing two serious security vulnerabilities that could potentially allow attackers to take control of users’ systems. The vulnerabilities, identified...
NVIDIA has issued a security bulletin addressing multiple vulnerabilities in its GPU Display Driver for both Windows and Linux. These vulnerabilities, if exploited, could allow attackers to execute malicious code,...
The Linux kernel community is buzzing with controversy following the removal of 11 developers, primarily associated with Russian companies, from the list of subsystem maintainers. Greg Kroah-Hartman, the stable branch...
In a recent analysis by Cybereason, security researcher Mark Tsipershtein delves into the intricacies of Beast Ransomware, a Ransomware-as-a-Service (RaaS) platform that has been actively targeting organizations since 2022. Beast,...
A sophisticated ransomware group, Cicada3301, has rapidly risen to prominence in the cybercrime landscape, targeting critical infrastructure sectors across the globe. First identified in June 2024, the Cicada3301 ransomware-as-a-service (RaaS)...
Security researchers have unveiled a novel technique that allows attackers to bypass the ‘noexec’ flag in Linux systems, potentially enabling the execution of malicious code even on partitions specifically configured...
SonicWall has released security updates to address multiple vulnerabilities affecting its SMA 1000 series SSL-VPN appliances and the associated Connect Tunnel Windows client. These flaws could allow attackers to launch...
Support Securityonline.info site. Thanks!
Mozi Botnet Re-Emerges as Androxgh0st in New Wave of IoT Exploits
November 11, 2024
