FIN8 Group Using Modified Sardonic Backdoor for BlackCat Ransomware Attacks
Jul 18, 2023THNRansomware / Cyber Threat The financially motivated threat actor known as FIN8 has been observed using a “revamped” version of a backdoor called…
Latest Cybersecurity News — Page 5199
View all →Anonymous Sudan Hits Government Agency
US government organization National Institute of Standards and Technology (NIST) was named as a recent target of a cyber attack by the Anonymous Sudan hacktivist…
Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks
At least two recently disclosed Adobe ColdFusion vulnerabilities appear to have been exploited in the wild, including a flaw that security experts say has not…
Critical ColdFusion flaws exploited in attacks to drop webshells
Update 7/17/23: The article was updated due to a mistaken warning added by Adobe to its email notification. However, a newer version of the bug…
Massive Exploit Against WooCommerce Payments Underway Bug
Hackers actively target vulnerable WordPress websites in an effort to take advantage of a widespread WooCommerce Payments plugin vulnerability and gain admin rights. The WooCommerce…
Microsoft Exchange Online hit by new outage blocking emails
Microsoft is investigating an ongoing Exchange Online outage preventing customers from sending emails and triggering 503 errors on affected systems. Impacted users report having issues…
JumpCloud Hacked – Attackers Compromised via Spear-Phishing
JumpCloud, an American commercial software company, has announced a data breach attributed to a spear phishing attack launched by a sophisticated nation-state-sponsored threat actor. As…
Norway Threatens $100,000 Daily Fine on Meta Over Data
Norway’s data protection agency said Monday it would ban Facebook and Instagram owner Meta from using the personal information of users for targeted advertising, threatening…
CISA orders govt agencies to mitigate Windows and Office zero-days
CISA ordered federal agencies to mitigate remote code execution zero-days affecting Windows and Office products that were exploited by the Russian-based RomCom cybercriminal group in NATO…
Cybercriminals Exploiting WooCommerce Payments Plugin Flaw to Hijack Websites
Jul 18, 2023THNServer Security / Vulnerability Threat actors are actively exploiting a recently disclosed critical security flaw in the WooCommerce Payments WordPress plugin as part…
Details Of 5600 Accounts Exposed
Registered VirusTotal customers’ data was found on the Internet with suspicion of it landing there due to a data leak. The alleged VirusTotal data leak…
JumpCloud was hit by a sophisticated attack by nation-state actorSecurity Affairs
Software firm JumpCloud announced it was the victim of a sophisticated cyber attack carried out by a nation-state actor. JumpCloud is a cloud-based directory service…