Chinese UNC3886 Actors Exploiting VMware, Fortinet 0-days For Spying
In 2021, UNC3886, a suspected China nexus cyber espionage actor, was found to be targeting strategic organizations on a large scale, utilizing multiple vulnerabilities in…
Month: June 2024
Qilin Ransomware Leaks 400GB of NHS and Patient Data on Telegram
On June 3, 2024, as reported by Hackread.com, attackers launched a targeted ransomware attack against Synnovis, a key outsourced lab service provider for NHS hospitals…
Intel-powered computers affected by serious firmware flaw (CVE-2024-0762)
A vulnerability (CVE-2024-0762) in the Phoenix SecureCore UEFI, which runs on various Intel processors, could be exploited locally to escalate privileges and run arbitrary code…
CISA Issues New Advisory for Industrial Control Systems
The Cybersecurity and Infrastructure Security Agency (CISA) has released a new advisory concerning a critical vulnerability in industrial control systems (ICS). The advisory, issued on…
Hackers Attacking Vaults, Buckets, And Secrets To Steal Data
Hackers target vaults, buckets, and secrets to access some of the most classified and valuable information, including API keys, logins, and other useful data kept…
threat actors are calling customers, posing as support
CDK Global has cautioned customers about unscrupulous actors calling them and posing as CDK agents or affiliates to gain unauthorized systems access. The warning follows ongoing cyberattacks…
Hackers Published Sensitive Data Stolen From London Hospitals
A cyber-attack on London hospitals resulted in the publication of sensitive data stolen from Synnovis, a National Health Service (NHS) pathology provider. The attack, which…
Mailcow Mail Server Vulnerability Let Attackers Execute Remote Code
Two critical vulnerabilities (CVE-2024-31204 and CVE-2024-30270) affecting Mailcow versions before 2024-04 allow attackers to execute arbitrary code on the server. An attacker can exploit these…
Oyster Backdoor Spreading via Trojanized Popular Software Downloads
Jun 21, 2024NewsroomMalware / Malvertising A malvertising campaign is leveraging trojanized installers for popular software such as Google Chrome and Microsoft Teams to drop a…
Hackers Employing FB Infrastructure Steal Your Account Password
Cybercriminals in password theft are constantly developing new ways to deliver phishing emails. They’ve learned to use a legitimate Facebook mechanism to send fake notifications…
Beware Of Zergeca Botnet with Scanning & Persistence Features
A new botnet named Zergeca has emerged, showcasing advanced capabilities that set it apart from typical Distributed Denial of Service (DDoS) botnets. Discovered by the…
US bans Kaspersky antivirus software due to national security risks
The US Department of Commerce has announced an upcoming US-wide ban of cybersecurity and antivirus software by Kaspersky, as its “ability to gather valuable US…