SolarWinds Access Rights Manager Flaw
IT and security administrators can utilize SolarWinds Access Rights Manager (ARM) to efficiently manage and audit user access rights to data, systems, and files. The…
Category: CyberSecurityNews
Authorities Seized RagnarLocker Ransomware Dark Web Site
A coordinated international law enforcement action has seized the dark web site used by the notorious RagnarLocker ransomware group. This operation involving law enforcement agencies…
Iranian Crambus Actors Modify Windows Firewall Rules Enable RC
The Crambus espionage group, formally known as OilRig or APT34, has a lengthy history and a great deal of experience conducting prolonged attacks against Iranian targets.…
BlackCat Hacker Tool Spreads Ransomware to Remote Machines
The BlackCat ransomware operators have demonstrated ongoing adaptation and innovation in their malicious activities, making mitigating their threats challenging for security experts. BlackCat operators, like…
TinyMCE Text Editor Flaw Let Attackers Execute XSS payload
Tiny Technologies, the company behind the popular text editor TinyMCE, announced the release of version 5.10.8 on October 19, 2023. This new version aims to…
U.S. Government Release Popular Phishing Technique by Hackers
Phishing is a cyberattack that uses deception to trick people into giving away sensitive information or taking actions that compromise security. Phishing is often the…
React Developer Tools Flaw Let Attackers Launch a DDoS Attack
React Developer Tools is an essential tool for developers as it allows them to effectively inspect React components, modify the properties and state of these…
A New Generation of Ransomware-as-a-Service
The increasing number of ransomware is on the rise primarily due to its lucrative nature and the inherent obscurity it provides to malicious actors in…
Hackers Shifting Towards Non-Executable .txt & .log Files
Recently, researchers have found an increasing number of malware samples that employ code from non-executable files (such as .txt, .log, etc.), a strategy created particularly…
Hackers Use Discord for C&C to Exploit Jupyter Notebooks & SSH
Jupyter Notebooks exposed to the internet are being targeted by a new crypto jacking campaign called Qubit Strike, which Cado Security Labs discovered. The campaign…
Former Navy IT Manager Sentenced for Selling Info on dark web
Marquis Hooper, a former IT Manager in the Navy, was sentenced to five years in prison for unlawfully accessing and tampering with a computer database…
Citrix NetScaler Zero-Day Exploited to Compromise Organizations
Two critical security vulnerabilities, namely CVE-2023-4966 and CVE-2023-4967, have been discovered in NetScaler ADC and NetScaler Gateway. These vulnerabilities impact several versions of the products,…