a malware epidemic in WordPressSecurity Affairs
Learn the shocking truth behind the Balada Injector campaign and find out how to protect your organization from this relentless viral invasion. A deadly cyber…
Category: Securityaffairs
China-linked APT UNC3886 used VMware ESXi Zero-DaySecurity Affairs
A China-linked APT group tracked as UNC3886 has been spotted exploiting a VMware ESXi zero-day vulnerability. Mandiant researchers observed a China-linked cyberespionage group, tracked as…
Xplain data breach also impacted national Swiss railway FSSSecurity Affairs
The Play ransomware attack suffered by the IT services provider Xplain also impacted the national railway company of Switzerland (FSS) and the canton of Aargau.…
Fortinet urges to patch a critical RCE flaw in Fortigate firewallsSecurity Affairs
Fortinet released security updates to fix a critical security flaw in its FortiGate firewalls that lead to remote code execution. Fortinet has released security patches…
Microsoft Patch Tuesday for June 2023 fixes 6 critical flawsSecurity Affairs
Microsoft Patch Tuesday security updates for June 2023 fixed 69 flaws in its products, including six critical issues. Microsoft Patch Tuesday security updates for June…
FUD Malware obfuscation engine BatCloak continues to evolveSecurity Affairs
Researchers detailed a fully undetectable (FUD) malware obfuscation engine named BatCloak that is used by threat actors. Researchers from Trend Micro have analyzed the BatCloak, a fully…
Intellihartx data breach exposed personal and health info of 490K individualsSecurity Affairs
Intellihartx is notifying about 490,000 individuals that their personal information was compromised in the GoAnywhere zero-day attack in January. The Clop ransomware group has stolen…
Experts released PoC exploit for MOVEit Transfer CVE-2023-34362Security Affairs
Security firm Horizon3 released proof-of-concept (PoC) exploit code for the remote code execution (RCE) flaw CVE-2023-34362 in the MOVEit Transfer MFT. MOVEit Transfer is a…
UK regulator Ofcom hacked with a MOVEit zero-daySecurity Affairs
UK communications regulator Ofcom suffered a data breach after a Clop ransomware attack exploiting the MOVEit file transfer zero-day. UK’s communications regulator Ofcom disclosed a…
Fortinet urges to patch the critical RCE flaw CVE-2023-27997 in Fortigate firewallsSecurity Affairs
Fortinet addressed a new critical flaw, tracked as CVE-2023-27997, in FortiOS and FortiProxy that is likely exploited in a limited number of attacks. Fortinet has finally published…
A DB containing data of +8.9 million Zacks users was leaked onlineSecurity Affairs
A database containing the personal information of more than 8.9 million Zacks Investment Research users was leaked on a cybercrime forum. A database containing personal…
St. Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closureSecurity Affairs
St. Margaret’s Health in Illinois is partly closing operations at its hospitals due to a 2021 ransomware attack that impacted its payment system. In February…