Chinese Hackers Using KEYPLUG Backdoor
It has been reported by the Recorded Future’s Insikt Group that RedGolf, a Chinese state-sponsored threat actor group, was using a backdoor designed especially for…
Month: March 2023
NHS IT systems under disruption threat due to cyber attack on Capita
Capita, an internationally acclaimed business processing & outsourcing firm, is experiencing a sudden halt in the operations of its IT services and suspects a cyber…
TomNomNom Repeatedly Fails at Writing JavaScript
TomNomNom Repeatedly Fails at Writing JavaScript Source link
Hackers exploit bug in Elementor Pro WordPress plugin with 11M installs
Hackers are actively exploiting a high-severity vulnerability in the popular Elementor Pro WordPress plugin used by over eleven million websites. Elementor Pro is a WordPress…
Latest Cyberthreats and Advisories – March 31, 2023
[ This article was originally published here ] By John Weiler Microsoft patches the “aCropalypse” vulnerability, ChatGPT leaks users’ billing information and the Latitude Financial…
Winter Vivern APT Targets European Government Entities with Zimbra Vulnerability
Mar 31, 2023Ravie LakshmananCyber Espionage / APT The advanced persistent threat (APT) actor known as Winter Vivern is now targeting officials in Europe and the…
[tl;dr sec] #175 – The Future of Security Engineering, Awesome Kubernetes Threat Detection, ChatGPT Plugins
Hey there, I hope you’ve been doing well! Reflections on Machine Learning I’ve noticed that recently Machine Learning has unintentionally become a regular section in…
10-year-old Windows bug with ‘opt-in’ fix exploited in 3CX attack
A 10-year-old Windows vulnerability is still being exploited in attacks to make it appear that executables are legitimately signed, with the fix from Microsoft still…
What are the Issues Facing CISOs Trying to Secure Their APIs?
In 2023, it has never been more critical for CISOs to secure API ecosystems. There are many advantages to APIs. The main benefit is the…
CISA Warns of Vulnerabilities in Propump and Controls’ Osprey Pump Controller
The critical set of vulnerabilities allowed attackers to cause significant problems, such as taking control of the device and disrupting the water supply, among other…
Global 3CX App Users At Risk, CEO Blames ‘Upstream Library’
A blame game seems to have started, after an ongoing supply chain attack that utilizes a trojanized version of the 3CX Voice Over Internet Protocol…
18 zero days found in Samsung , google pixel and anything using Exynos Auto T5123 chipset
18 zero days found in Samsung , google pixel and anything using Exynos Auto T5123 chipset Source link