Internet Security

New MassJacker clipper targets pirated software seekers

March 15, 2025 add comment
Pirated software seekers are targeted by the new MassJacker clipper malware, according to CyberArk researchers. A new malware campaign spreading a new clipper malware dubbed MassJacker targets users searching... Read more »

Cisco IOS XR flaw allows attackers to crash BGP process on routers

March 15, 2025 add comment
Cisco addressed a denial of service (DoS) vulnerability that allows attackers to crash the Border Gateway Protocol (BGP) process on IOS XR routers. Cisco has addressed a denial of service (DoS) vulnerability,... Read more »

LockBit ransomware developer Rostislav Panev was extradited from Israel to the U.S.

March 14, 2025 add comment
The US Justice Department announced that the LockBit ransomware developer Rostislav Panev was extradited from Israel to the U.S. The US Justice Department announced that one of the LockBit... Read more »

SuperBlack Ransomware operators exploit Fortinet Firewall flaws in recent attacks

March 14, 2025 add comment
Operators behind the SuperBlack ransomware exploited two vulnerabilities in Fortinet firewalls for recent attacks. Between January and March, researchers at Forescout Research – Vedere Labs observed a threat actors... Read more »

U.S. CISA adds Apple products and Juniper Junos OS flaws to its Known Exploited Vulnerabilities catalog

March 14, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple products and Juniper Junos OS flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following... Read more »

GitLab addressed critical auth bypass flaws in CE and EE

March 13, 2025 add comment
GitLab addressed two critical authentication bypass vulnerabilities in Community Edition (CE) and Enterprise Edition (EE). GitLab released security updates to address critical vulnerabilities in Community Edition (CE) and Enterprise... Read more »

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

March 13, 2025 add comment
North Korea-linked APT group ScarCruft used a new Android spyware dubbed KoSpy to target Korean and English-speaking users. North Korea-linked threat actor ScarCruft (aka APT37, Reaper, and Group123) is behind... Read more »

Experts warn of a coordinated surge in the exploitation attempts of SSRF vulnerabilities

March 13, 2025 add comment
Researchers warn of a “coordinated surge” in the exploitation attempts of SSRF vulnerabilities in multiple platforms. Threat intelligence firm GreyNoise observed Grafana path traversal exploitation attempts before the Server-Side... Read more »

Meta warns of actively exploited flaw in FreeType library

March 13, 2025 add comment
Meta warned that a vulnerability, tracked as CVE-2025-27363, impacting the FreeType library may have been exploited in the wild. Meta warned that an out-of-bounds write flaw, tracked as CVE-2025-27363 (CVSS score... Read more »

Medusa ransomware hit over 300 critical infrastructure organizations until February 2025

March 13, 2025 add comment
The Medusa ransomware operation hit over 300 organizations in critical infrastructure sectors in the United States until February 2025. The FBI, CISA, and MS-ISAC have issued a joint advisory... Read more »
Subscribe to our Newsletter