Stealthy ‘sedexp’ Linux malware evaded detection for two years
A stealthy Linux malware named ‘sedexp’ has been evading detection since 2022 by using a persistence technique not yet included in the MITRE ATT&CK framework.…
Author: Cybernoz
Audit finds notable security gaps in FBI’s storage media management
An audit from the Department of Justice’s Office of the Inspector General (OIG) identified “significant weaknesses” in FBI’s inventory management and disposal of electronic storage media…
Cyber Security Weekly News Letter – Data Breaches, Vulnerability, Cyber Attack & Other Stories
In the ever-evolving landscape of cybersecurity, the past week has highlighted several critical developments and ongoing challenges faced by organizations globally. Cybercriminals, increasingly sophisticated and…
Sheltering From the Cyberattack Storm – Part Two
In the first part of this series, I discussed sophisticated cyberattacks, analyzed an example, and offered advice on how to remediate against such an attack. But…
Dell Power Manager Privilege Escalation Vulnerability
Dell Technologies has issued a critical security update for its Dell Power Manager software following the discovery of a significant vulnerability that could allow attackers…
Progress WhatsUp Gold Vulnerabilities – Attackers Inject SQL Commands
The Progress WhatsUp Gold team confirmed the existence of critical vulnerabilities in all versions of their software released before 2024.0.0. If exploited, these vulnerabilities could…
Chrome Zero-day Vulnerability Actively Exploited in the Wild
Google has announced the release of Chrome 128 to the stable channel for Windows, Mac, and Linux. This update, Chrome 128.0.6613.84 for Linux and 128.0.6613.84/.85…
France police arrested Telegram CEO Pavel Durov
France police arrested Telegram CEO Pavel Durov Pierluigi Paganini August 25, 2024 French police arrested Pavel Durov, founder and chief executive of Telegram, due to the…
U.S. CISA adds Versa Director bug to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Versa Director bug to its Known Exploited Vulnerabilities catalog Pierluigi Paganini August 25, 2024 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds…
Week in review: PostgreSQL databases under attack, new Chrome zero-day actively exploited
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: PostgreSQL databases under attackPoorly protected PostgreSQL databases running on Linux…
New Linux Malware ‘sedexp’ Hides Credit Card Skimmers Using Udev Rules
Aug 25, 2024Ravie LakshmananFinancial Fraud / Cybercrime Cybersecurity researchers have uncovered a new stealthy piece of Linux malware that leverages an unconventional technique to achieve…
Telegram Founder Pavel Durov Arrested in France for Content Moderation Failures
Aug 25, 2024Ravie LakshmananLaw Enforcement / Digital Privacy Pavel Durov, founder and chief executive of the popular messaging app Telegram, was arrested in France on…