New Balada Injector campaign infects 6,700 WordPress sites
A little over 6,700 WordPress websites using a vulnerable version of the Popup Builder plugin have been infected with the...
Read more →Author: Cybernoz
Mirai-based NoaBot Botnet Targeting Linux Systems with Cryptominer
A noticeable difference between NoaBot and Mirai is that rather than DDoS attacks, the botnet targets weak passwords connecting SSH...
Read more →
Ransomware review: January 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Read more →
New Python-based FBot Hacking Toolkit Aims at Cloud and SaaS Platforms
Jan 11, 2024NewsroomCloud Security / Cyber Attacks A new Python-based hacking tool called FBot has been uncovered targeting web servers,...
Read more →
Two zero-day bugs in Ivanti Connect Secure actively exploited
Two zero-day bugs in Ivanti Connect Secure actively exploited Pierluigi Paganini January 11, 2024 Ivanti revealed that two threat actors...
Read more →
Critical Cisco Unity Connection Flaw Let Attackers Run Command
A critical vulnerability of severe severity has been found in Cisco Unity Connection’s web-based management interface. This flaw might allow...
Read more →
Is it possible to use an external SSD to speed up your Mac
Over time, your Mac may experience a slowdown, prompting the need to explore methods to enhance its speed. Fortunately, one...
Read more →
Threat Actors Increasingly Abusing GitHub for Malicious Purposes
Jan 11, 2024NewsroomCybersecurity / Software Security The ubiquity of GitHub in information technology (IT) environments has made it a lucrative...
Read more →
Cisco fixes high-impact flaw in unified comms platform
A critical vulnerability in Cisco Unity Connection – a messaging and voicemail product that forms part of the networking supplier’s...
Read more →
CISA adds Ivanti and Microsoft SharePoint bugs to its Known Exploited Vulnerabilities catalog
CISA adds Ivanti and Microsoft SharePoint bugs to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 11, 2024 U.S. Cybersecurity...
Read more →![[tl;dr sec] #213 - AWS Secure Defaults, Damn Vulnerable LLM Agent, cdk-goat](https://cybernoz.com/wp-content/uploads/2024/01/tldr-sec-213-AWS-Secure-Defaults-Damn-Vulnerable-LLM.png "[tl;dr sec] #213 - AWS Secure Defaults, Damn Vulnerable LLM Agent, cdk-goat 33")
[tl;dr sec] #213 – AWS Secure Defaults, Damn Vulnerable LLM Agent, cdk-goat
I hope you’ve been doing well! ✈️ In Plane Sight I’ve gotta get something off my chest. Normally on planes...
Read more →
Finland warns of Akira ransomware wiping NAS and tape backup devices
The Finish National Cybersecurity Center (NCSC-FI) is informing of increased Akira ransomware activity in December, targeting companies in the country and wiping backups....
Read more →