Earth Koshchei Hackers Using Red Team Tools To Attack RDP Servers
A sophisticated cyber espionage campaign leveraging red team tools to exploit Remote Desktop Protocol (RDP) servers has been uncovered, with the threat actor Earth Koshchei…
Author: Cybernoz
Earth Koshchei Employs RDP Relay, Rogue RDP server in Server Attacks
A new cyber campaign by the advanced persistent threat (APT) group Earth Koshchei has brought rogue Remote Desktop Protocol (RDP) attacks to the forefront of…
INTERPOL Pushes for “Romance Baiting” to Replace “Pig Butchering” in Scam Discourse
Dec 18, 2024Ravie LakshmananCyber Fraud / Social engineering INTERPOL is calling for a linguistic shift that aims to put to an end to the term…
Top 10 cyber crime stories of 2024
The ransomware juggernaut rolled inexorably onwards in 2024, yet again, leaving more devastated victims in its wake. This year, the UK’s NHS found itself at…
New Apache Tomcat Vulnerabilities Let Attackers Execute Remote Code
Two critical vulnerabilities have been discovered in Apache Tomcat, the popular open-source web server, and servlet container, potentially allowing attackers to execute remote code and…
1-Click RCE Attack In Kerio Control UTM Allow Attackers Gain Firewall Root Access Remotely
GFI Software’s Kerio Control, a popular UTM solution, was found to be vulnerable to multiple HTTP Response Splitting vulnerabilities, which affecting versions 9.2.5 through 9.4.5,…
Appdome protects applications running on mobile-enabled platforms
Appdome announced that the Appdome Mobile Defense Platform now protects applications running on mobile-enabled platforms like Apple macOS, Apple visionOS, Meta Quest, HarmonyOS Next, Android…
Top 10 Kubernetes and storage stories of 2024
“Not everyone runs Kubernetes in production, but everyone has a Kubernetes proof-of-concept project” – that’s the kind of thing you hear from IT industry analysts.…
The Mask APT is back after 10 years of silence
The Mask APT is back after 10 years of silence Pierluigi Paganini December 18, 2024 Kaspersky researchers linked a new wave of cyber attacks to…
Microsoft Sentinel Launched Agentless Integration for SAP Security
With critical SAP vulnerabilities being weaponized within 72 hours of a patch release, and unprotected SAP applications provisioned in cloud environments being discovered and compromised…
Spring Framework Path Traversal Vulnerability (CVE-2024-38819) PoC Exploit Released
A Proof of Concept (PoC) exploit for the critical path traversal vulnerability identified as CVE-2024-38819 in the Spring Framework has been released, shedding light on…
Stairwell Core boosts threat intelligence for security teams
Stairwell announces Stairwell Core, which enables organizations to privately collect, store, and continuously reassess executable files so they can confidently determine if malware has affected…