Hackers Attack ThinkPHP By Injecting Payload From Remote Servers
Threat actors are constantly evolving their TTPs and developing new malicious tools to execute their activities. Recently, Akamai researchers have noted a concerning trend of…
Author: Cybernoz
UAC-0020 used SPECTR Malware to target Ukraine defense forces
UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces Pierluigi Paganini June 07, 2024 Ukraine CERT-UA warned of cyber attacks targeting defense…
Critical PHP Remote Code Execution Flaw let Attackers Inject Malicious Scripts
The widely used PHP programming language has been discovered with a new remote code execution vulnerability deemed critical severity. Further, this vulnerability is related to…
SPECTR Malware Attacking Defense Forces of Ukraine
The government computer emergency response team of Ukraine, CERT-UA, in direct cooperation with the Cyber Security Center of the Armed Forces of Ukraine (CCB), has…
Guardian Analytics And Webster Bank Data Breach Reaches $1.4M Settlement
Guardian Analytics Inc. and Webster Bank N.A. have agreed to pay over $1.4 million to resolve claims stemming from a data breach in 2022. The…
Huge Surge in Attacks Exploiting Check Point VPN Zero-Day Vulnerability
Check Point published an advisory regarding a critical vulnerability, CVE-2024-24919, which has since seen a surge in exploitation attempts. The vulnerability, rated with a CVSS…
FBI Distributes 7,000 LockBit Ransomware Decryption Keys to Help Victims
Jun 07, 2024NewsroomRansomware / Endpoint Security The U.S. Federal Bureau of Investigation (FBI) has disclosed that it’s in possession of more than 7,000 decryption keys…
Fujitsu had Post Office ‘over a barrel’, inquiry told
The Post Office board was desperate to end its IT contract with Fujitsu as early as 2013, but the supplier had the Post Office ‘over…
Threat Actor Claims Data Breaches At DFINITY And Cryptonary
A threat actor (TA) has posted databases belonging to two prominent companies utilizing blockchain technology, The DFINITY Foundation and Cryptonary, on the Russian-language forum Exploit.…
Microsoft to Disable NTLM, Transition to Kerberos Authentication
Microsoft has made an announcement regarding the gradual phasing out of all versions of NTLM (NT LAN Manager). This decision is part of Microsoft’s ongoing…
300+ Times Downloaded Package PyPI Contains Wiper Components
ReversingLabs researchers recently uncovered a malicious open-source package named xFileSyncerx on the Python Package Index (PyPI). This package, which had been downloaded nearly 300 times,…
SPECTR Malware Targets Ukraine Defense Forces in SickSync Campaign
Jun 07, 2024NewsroomCyber Attack / Malware The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of cyber attacks targeting defense forces in the country…