Kimsuky APT Hackers Dropping Malware Via CHM Files
AhnLab Security Emergency Response Center (ASEC) researchers discovered the Kimsuky APT group’s recent strikes, in which attackers have been using CHM files to distribute malware…
Category: CyberSecurityNews
UPS Hacked – Attackers Using Smishing To Harvest Data
As reports suggest, UPS shipping and logistics recently faced a security incident after finding an unauthorized access issue on their internal audit. There was a…
RedEnergy – A New Hybrid Stealer-as-a-Ransomware
Recently, the cybersecurity analysts at Zscaler found a new variant of malware, RedEnergy, a new hybrid Stealer-as-a-Ransomware threat. RedEnergy stealer targets industries through fake updates,…
PoC Exploit Published for Cisco AnyConnect Flaw
Many organizations worldwide have used Cisco AnyConnect VPNs due to their security and other great features. Cisco has many products for VPN depending upon the…
Hackers Use Weaponized OpenSSH Tool to Hijack Linux Systems
Cybersecurity researchers at Microsoft recently found an attack targeting Linux-based systems and IoT devices. It has been identified that the exploit employs custom and open-source…
Hackers compromised the Roundcube Email Servers
APT28 (aka BlueDelta, Fancy Bear, Sednit, and Sofacy), a threat group connected to Russia’s GRU, hacked the Roundcube email servers of over 40 Ukrainian organizations,…
Researchers Bypassed BIOS Password on Lenovo Laptops
CyberCX’s cyber security experts have recently unveiled a way to consistently bypass the security of older Lenovo Laptops with BIOS locked, raising serious security issues…
Cl0p ransomware gang – $10 Million Bounty
In recent times, there have been several reports about the CL0P ransomware gang exploiting the MOVEit transfer application. The CISA and the FBI have published…
Reddit Hackers Threaten to Leak 80GB of Stolen Data
The February 5th intrusion on Reddit was allegedly carried out by the ALPHV ransomware operation, also known as BlackCat. Threat actors gained Reddit’s systems through…
Microsoft’s June 2023 Patch Tuesday
Microsoft’s Patch Tuesday for June 2023 is here, bringing security updates for 78 problems, including 38 vulnerabilities that can be exploited remotely. Microsoft addressed 38…
Hackers Targeting Microsoft’s MS SQL Servers Extensively
The rapid rise of digital and technological advances brought several innovative improvements. Still, besides this, the security of databases has also become extremely important, as…
Critical Vulnerability in WordPress Stripe Payment Plugin
The WordPress Stripe Payment Gateway plugin has been vulnerable to Unauthenticated Insecure Direct Object Reference (IDOR) Vulnerability. WooCommerce developed this plugin. The plugin version is…