Oracle Weblogic Server Flaw Allows Attackers Full Control
A new secondary JNDI injection vulnerability was discovered in a recent version of WebLogic, allowing attackers to trigger JNDI injection during another JNDI lookup process,…
Category: CyberSecurityNews
Hunters Announces Full Adoption of OCSF and Introduces OCSF-Native Search
Hunters, the pioneer in modern SOC platforms, today announced its full adoption of the Open Cybersecurity Schema Framework (OCSF), coupled with the launch of groundbreaking…
Yoast SEO Plugin XSS Flaw Exposes 5M+ WordPress Website
A critical cross-site scripting (XSS) vulnerability has been discovered in the popular Yoast SEO WordPress plugin, potentially putting over 5 million websites at risk of…
NCA Reveals Identity of LockBit Ransomware Group Leader
The UK’s National Crime Agency (NCA) announced a major breakthrough today in investigating the notorious LockBit ransomware gang. LockBit, a ransomware-as-a-service (RaaS) operation, has been…
HijackLoader Using Weaponized PNG Files To Deliver Multiple Malware
HijackLoader, a modular malware loader observed in 2023, is evolving with new evasion techniques, as it is a variant using a PNG image to deliver…
MITRE Shares Details on Nation-State Hackers’ Intrusion
The MITRE Corporation, a not-for-profit organization that operates research and development centers for the U.S. government, has disclosed that sophisticated nation-state hackers recently compromised one…
Beware! 150+ SSH Accounts With Root Access Advertised On Hacker Forums
In a concerning development for cybersecurity, over 150 SSH accounts with root access are currently being advertised for sale on various hacker forums. These accounts…
Microsoft Defender XDR Expanded to Malicious OAuth Apps
In an update to its security operations suite, Microsoft has announced the expansion of its Defender Extended Detection and Response (XDR) capabilities to include advanced…
SandStorm Hackers Added New Kapeka Tool to it’s Arsenal
Kapeka, also known as KnuckleTouch, is a sophisticated backdoor malware that has been making waves in the cybersecurity world. Initially appearing in mid-2022, it wasn’t…
Finland Warns Of New Android Malware Stealing Banking Details
Watch out for harmful Finnish SMS, which tricks Android device users into loading banking malware by dialing a spoofed service number. It is directed at…
New Cuckoo Malware Attacking macOS Users to Steal Data
Cybersecurity researchers have uncovered a new malware strain dubbed “Cuckoo.” This malicious software exhibits characteristics of both spyware and an infostealer, targeting both Intel and…
Multiple Xiaomi Android Devices Flaw : Attackers Hijack Phones
Several security experts have recently discovered that Xiaomi Android devices are suffering from a range of security vulnerabilities that affect several apps and system components.…