HelloKitty Ransomware Exploiting Apache ActiveMQ Flaw
The recently disclosed Apache ActiveMQ remote code execution (RCE) flaw, CVE-2023-46604 is being exploited to spread ransomware binaries on target systems and demand a ransom from the…
Category: CyberSecurityNews
Hackers Spreading WhatsApp Spy Mods Via Telegram
WhatsApp does not officially support WhatsApp mods and can vary in popularity. Some users are attracted to them for extra features and customization options. However,…
Government of Canada Bans WeChat and Kaspersky Apps
The minister of Canada, Anita Anand, banned the WeChat and Kaspersky suite of applications on government mobile devices. With WeChat, you can enjoy a range…
Microsoft Edge Vulnerability Let Attackers Execute Malicious Code
Three new vulnerabilities have been discovered in Microsoft Edge (Chromium-based) associated with Remote Code execution and Spoofing. The CVEs of these vulnerabilities have been assigned…
Mysterious Kill Switch Disrupts the Notorious Mozi IoT Botnet
As of August 2023, one of the most notorious IoT Botnets called “Mozi” vanished from their activities. Mozi Botnet had been exploiting hundreds of thousands…
5000+ Employees Personal Information Exposed
The US-based software firm Okta has disclosed a data breach caused by a third-party vendor, Rightway Healthcare, Inc., which exposed the personal information of around 5,000…
3,000+ Apache ActiveMQ Servers Vulnerable to RCE Attacks
More than 3,000 Apache ActiveMQ servers exposed to the internet are at risk due to a critical remote code execution (RCE) vulnerability identified as CVE-2023-46604. The most widely…
Remote Desktop Manager Flaw Let Attacker Execute Remote Code
Recent reports indicate that the Remote Desktop Manager and Devolutions Server have been affected by improper access control and Remote code execution vulnerabilities. The CVEs…
Best Practices and Proven Strategies
Protecting cloud-based apps and the data they manage is the primary goal of Software as a Service (SaaS) security. With the growing popularity of software…
Cisco Meeting Server Flaw Let Attacker Trigger a DoS Attack
Cisco has warned about a serious security issue in the Web Bridge feature of the Cisco Meeting Server. The flaw (CVE-2023-20255) could let someone who is…
Fix for 15 security Flaws
Google has released Chrome 119 to the stable channel for Windows, Mac, and Linux, along with 15 security patches. Version 119.0.6045.105 for Linux and macOS…
Next Generation CVSS v4.0 Vulnerability Scoring System Released
FIRST, the Forum of Incident Response and Security Teams has recently unveiled the latest version of their Common Vulnerability Scoring System (CVSS). The new CVSS…