Juniper Warns of Mirai Botnet Targeting SSR Devices with Default Passwords
Dec 19, 2024Ravie LakshmananMalware / Botnet Juniper Networks is warning that Session Smart Router (SSR) products with default passwords are being targeted as part of…
Author: Cybernoz
CCS cloud hosting deal with AWS under scrutiny as contract value soars by 89% after 15 months
The Crown Commercial Service’s (CCS) decision to increase its cloud hosting spend with Amazon Web Services (AWS) mid-contract by 89% is under scrutiny from procurement…
Hikvision Camera Driver Vulnerability Records Login details in Log files
A newly disclosed security vulnerability, tracked under CVE-2024-12569, has been identified in Hikvision camera drivers integrated with Milestone’s XProtect® Device Pack. This vulnerability has raised…
Hackers Weaponizing LNK Files To Create Scheduled Task And Deliver Malware Payload
TA397, also known as Bitter, targeted a Turkish defense organization with a spearphishing email containing a RAR archive, which included a decoy PDF, a malicious…
Malicious Supply Chain Attacking Moving From npm Community To VSCode Marketplace
Researchers have identified a rise in malicious activity on the VSCode Marketplace, highlighting the vulnerability of the platform to supply chain attacks similar to those…
New Mobile Phishing Targets Executives with Fake DocuSign Links
KEY SUMMARY POINTS Targeted Attacks: Sophisticated spear phishing campaigns are increasingly targeting corporate executives via mobile devices, using social engineering tactics. Exploitation of Trust: Attackers…
The AI Threat: It’s Real, and It’s Here
We’re at a defining moment in cybersecurity that will determine organizational survival. Transform or be transformed by a competitor—this isn’t a slogan, it’s a survival…
CISA orders federal agencies to secure their Microsoft cloud environments
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a binding operational directive (BOD 25-01) requiring federal civilian agencies to secure their (Microsoft) cloud…
CISA Released National Cyber Incident Response Plan (NCIRP)
The Cybersecurity and Infrastructure Security Agency (CISA) has unveiled an updated version of the National Cyber Incident Response Plan (NCIRP), a strategic framework for coordinating…
Beware Of Malicious SharePoint Notifications That Delivers Xloader Malware
Through the use of XLoader and impersonating SharePoint notifications, researchers were able to identify a sophisticated malware delivery campaign. A link that was disguised as…
What SAP Security Can Learn From Successful European Football (Soccer) Teams
Team competitions like the European Football Championships repeatedly show that the supposed favorites do not always win. These competitions have their dynamics and often enable…
Fortinet Warns of Critical FortiWLM Flaw That Could Lead to Admin Access Exploits
Dec 19, 2024Ravie LakshmananVulnerability / Network Security Fortinet has issued an advisory for a now-patched critical security flaw impacting Wireless LAN Manager (FortiWLM) that could…