MOVEit Transfer Vulnerability Let Attackers Escalate Privileges
MOVEit Transfer software was discovered to be vulnerable to a potential privilege escalation and unauthorized access to the environment. Users are recommended to take the…
Category: CyberSecurityNews
‘Migraine’ Flaw Let Hackers Bypass MacOS Security Integrity
A recently discovered vulnerability called “Migraine” is linked to macOS migration and poses a serious threat. It enables attackers with root privileges to circumvent System…
Zero-Click iOS Malware Actively Attacks iPhone Through iMessage
Kaspersky recently reported that a number of iPhones connected to its network were compromised through an iOS vulnerability. The attackers exploited iMessage’s zero-click exploits, allowing…
Ghost Sites – Deactivated Salesforce Websites Data Leak
Researchers at Varonis Threat Labs discovered that some Salesforce sites were improperly deactivated or unmaintained SalesforceGhost Sites. Threat actors can exfiltrate PII and business data…
Ransomware Attack Prevention Checklist – 2023
Businesses face significant hazards from ransomware attacks, which are capable of causing severe damage in a brief period. Over the past few years, numerous well-known…
Network Security Checklist – 2023
Network security is paramount in today’s digital landscape, where organizations face increasingly sophisticated threats. This guide presents a detailed Network Security checklist with examples to…
New Cryptomining Malware Delivered Using TeamViewer Accounts
In May 2023, Huntress ThreatOps Center analysts detected a cryptocurrency miner (XMRig) on an endpoint, identified the miner’s associated site and wallet address by locating…
Chrome 114 Released With Fix for 16 Security Flaws
For Windows, Mac, and Linux, Google has released Chrome 114 to the stable channel. The next few days/weeks will see the implementation of this. According to…
Android Malware Mimic Popular Apps to Steal Sensitive Data
DogeRAT (Remote Access Trojan) is an open-source Android malware that targets a sizable customer base from various businesses, particularly banking, and entertainment. CloudSEK’s TRIAD team…
Kali Linux 2023.2 Released – What’s New!
Offensive Security launched Kali Linux 2023.2, an updated Penetration testing distro with new features, hacking tools, and various updates. The Offensive Security team consistently releases…
Lazarus Hacking Group Attack IIS Web Servers
The AhnLab Security Emergency Response Center (ASEC) confirmed recent attacks on Windows IIS web servers by the nationally supported Lazarus group. Typically, threat actors exploit…
New Wi-Fi MITM Attack That Can Evade WPA3
The recent discovery of a critical vulnerability in the NPU chipset by Tsinghua University and George Mason University researchers allows attackers to eavesdrop on data…