Fake PoC Exploit Targets Cybersecurity Researchers with Malware
SUMMARY Fake PoC Exploit for CVE-2024-49113: A malicious exploit, “LDAPNightmare,” targets researchers by disguising it as a PoC for a patched Windows LDAP vulnerability. Data…
Category: HackRead
Muddling Meerkat Linked to Domain Spoofing in Global Spam Scams
SUMMARY Infoblox discovered widespread domain spoofing in spam campaigns while investigating ‘Muddling Meerkat.’ Collaboration with the cybersecurity community linked Muddling Meerkat’s DNS activities to spam…
Ivanti Urges Patch for Flaws in Connect Secure, Policy Secure and ZTA Gateways
SUMMARY Critical Vulnerabilities Identified: Ivanti has disclosed two critical vulnerabilities (CVE-2025-0282 and CVE-2025-0283) in Connect Secure, Policy Secure, and ZTA Gateways, with CVE-2025-0282 already being…
Banshee Stealer Hits macOS Users via Fake GitHub Repositories
SUMMARY Banshee Stealer targets macOS users, distributed via fake GitHub repositories and phishing sites. The malware steals browser credentials, cryptocurrency wallets, 2FA codes, and system…
Harnessing AI for Proactive Threat Intelligence and Advanced Cyber Defense
Discover how AI revolutionizes cybersecurity with real-time threat detection, adaptive protection, and advanced data protection to combat evolving cybersecurity risks. Cybersecurity threats are no longer…
Phishing, Ransomware and Other Emerging Threats
Explore top cybersecurity risks in crypto, including phishing, ransomware, and MitM attacks. Learn practical tips to safeguard your digital assets now. Cryptocurrencies have recently increased…
Criminal IP Launches Real-Time Phishing Detection Tool on Microsoft Marketplace
Torrance, United States / California, January 9th, 2025, CyberNewsWire Criminal IP, a globally recognized Cyber Threat Intelligence (CTI) solution by AI SPERA, has launched its Criminal…
Thousands of Live Hacker Backdoors Found in Expired Domains
SUMMARY Cybersecurity firm watchTowr discovered over 4,000 active hacker backdoors relying on expired domain names. These backdoors are pre-existing entry points on already compromised systems,…
New PayPal Phishing Scam Exploits MS365 Tools and Genuine-Looking Emails
SUMMARY Phishing Scam Targets PayPal: Scammers exploit PayPal’s system to link victim accounts to unauthorized addresses. Legitimate-Looking Emails: The scam uses real-looking emails and valid…
Scammers Impersonate Authorities to Swipe OTPs with Remote Access Apps
SUMMARY Sophisticated Scam in the Middle East: Cybercriminals are posing as government officials to carry out refund scams, using remote access tools like AnyDesk and…
Millions of Email Servers Exposed Due to Missing TLS Encryption
SUMMARY Critical Oversight in Email Servers: Over 3.3 million email servers worldwide lack TLS encryption, leaving usernames, passwords, and email content vulnerable to interception during…
Critical Vulnerabilities in Moxa Routers Allow Root Privilege Escalation
Critical security vulnerabilities have been found in Moxa cellular routers and network security appliances. Learn about CVE-2024-9138 & CVE-2024-9140, including privilege escalation and OS command…