Hackers Attacking Apache Web Servers to Install Coinminers
An attack campaign that installs XMRig Coinminer on Windows web servers that run on Apache has been discovered recently. The threat actors used the Cobalt…
Category: CyberSecurityNews
CISA Releases Cyber Attack Mitigation
In an era marked by persistent cyber threats, the Cybersecurity and Infrastructure Security Agency (CISA) has released a cyber attack Mitigation Guide specifically tailored for…
LummaC2 Employs Trigonometry to Track Mouse Movements
MaaS (Malware-as-a-Service) thrives as a top choice for new cyber threats, offering easy access to powerful tools. Threat actors primarily focus on information theft under…
Nessus Vulnerability Let Attackers Alter Rules Variables
An arbitrary file write vulnerability has been discovered in Nessus, which allows an authenticated, remote attacker to perform a denial of service condition on affected…
Hackers Infect Linux Machines via Apache ActiveMQ Vulnerability
Apache ActiveMQ is a Java-based open-source protocol that allows distributed applications to exchange messages. It uses the JMS API to provide a dependable messaging platform…
LitterDrifter Powershell Worm Rapidly Spreads on USB Drives
Gamaredon (aka Primitive Bear, ACTINIUM, and Shuckworm) stands out in Russian espionage by exclusively targeting Ukrainian entities. Unusually evident, it challenges researchers seeking evidence of…
Splunk RCE Vulnerability Let Attackers Upload Malicious File
A high-severity Remote Code Execution (RCE) flaw in Splunk Enterprise has been discovered, enabling an attacker to upload malicious files. Versions of Splunk Enterprise less than…
Hackers Exploit Google Workspace to Exfiltrate Data
Recent research into Google Workspace and Google Cloud Platform by Bitdefender Labs reveals novel attack methods, potentially leading to network-wide breaches and raising concerns about…
Hackers Exploiting Zimbra 0-day to Attack
Zimbra Collaboration is an open-source solution software suite with an email server and web client for collaboration. Over 5,000 companies and public sector users, along…
FBI Shares Techniques Used by Scattered Spider Hacker Group
In recent months, the Scattered Spider hacking group (aka Starfraud, UNC3944, Scatter Swine, and Muddled Libra) has made news for allegedly attacking the following casino…
Malware Discovered in Kids’ Tablet steals sensitive data
In the ever-expanding market of Android devices, the allure of budget-friendly options can sometimes conceal unforeseen risks. Purchasing Android devices from online platforms like Amazon…
FortiSIEM Injection Flaw – Attackers Execute Malicious Commands
OS command injection is a security vulnerability where an attacker exploits improper user input validation to inject malicious commands into an operating system. This can…