Internet Security

Romanian national was sentenced to 20 years in prison for his role in NetWalker ransomware attacks

December 21, 2024 add comment
Romanian national was sentenced to 20 years in prison for his role in NetWalker ransomware attacks, pleading guilty to fraud charges in June. Romanian national Daniel Christian Hulea, 30,... Read more »

Sophos fixed critical vulnerabilities in its Firewall product

December 20, 2024 add comment
Sophos fixed three Sophos Firewall flaws that could lead to SQL injection, privileged SSH access to devices, and remote code execution. Sophos has addressed three vulnerabilities, respectively tracked as... Read more »

U.S. CISA adds BeyondTrust software flaw to its Known Exploited Vulnerabilities catalog

December 20, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity... Read more »

Raccoon Infostealer operator sentenced to 60 months in prison

December 20, 2024 add comment
Raccoon Infostealer operator Mark Sokolovsky was sentenced to 60 months in US prison and ordered to pay over $910,000 in restitution. The US Department of Justice sentenced the Ukrainian... Read more »

Mirai botnet targets SSR devices, Juniper Networks warns

December 19, 2024 add comment
Juniper Networks warns that a Mirai botnet is targeting SSR devices with default passwords after unusual activity was reported on December 11, 2024. Juniper Networks is warning that a... Read more »

Fortinet warns about Critical flaw in Wireless LAN Manager FortiWLM

December 19, 2024 add comment
Fortinet warns of a patched FortiWLM vulnerability that could allow admin access and sensitive information disclosure. Fortinet warned of a now-patched Wireless LAN Manager (FortiWLM) vulnerability, tracked as CVE-2023-34990... Read more »

CERT-UA: Russia-linked UAC-0125 abuses Cloudflare Workers to target Ukrainian army

December 19, 2024 add comment
The Computer Emergency Response Team of Ukraine (CERT-UA) warns that the threat actor UAC-0125 abuses Cloudflare Workers services to target the Ukrainian army with Malware. The Computer Emergency Response... Read more »

US considers banning TP-Link routers over cybersecurity concerns

December 19, 2024 add comment
The U.S. government may ban TP-Link routers in 2025 if investigations confirm their use could pose a national security risk. The U.S. government is investigating whether TP-Link routers, linked... Read more »

Russia-linked APT29 group used red team tools in rogue RDP attacks

December 18, 2024 add comment
Russia-linked APT29 group uses malicious RDP configuration files, adapting red teaming methods for cyberattacks to compromise systems. In October 2024, the Russia-linked cyber espionage group APT29 (aka Earth Koshchei, SVR... Read more »

Threat actors are attempting to exploit Apache Struts vulnerability CVE-2024-53677

December 18, 2024 add comment
Researchers warn that threat actors are attempting to exploit a recently disclosed Apache Struts vulnerability CVE-2024-53677. Researchers warn that threat actors are attempting to exploit the vulnerability CVE-2024-53677 (CVSS... Read more »
Subscribe to our Newsletter