Internet Security

New Perfctl Malware targets Linux servers in cryptomining campaign

October 4, 2024 add comment
perfctl malware targets misconfigured Linux servers to deploy cryptocurrency miners and proxyjacking software in an ongoing campaign. Aqua Nautilus researchers shed light on a Linux malware, dubbed perfctl malware,... Read more »

Microsoft and DOJ seized the attack infrastructure used by Russia-linked Callisto Group

October 4, 2024 add comment
Microsoft and the U.S. DoJ seized over 100 domains used by the Russia-linked Callisto Group for launching attacks on U.S. government and nonprofits. The Justice Department revealed the unsealing... Read more »

Dutch police breached by a state actor

October 3, 2024 add comment
The Dutch government blames a “state actor” for hacking a police system, exposing the contact details of all police officers, according to the justice minister. The Dutch police blame... Read more »

Thousands of Adobe Commerce e-stores hacked by exploiting the CosmicSting bug

October 3, 2024 add comment
Over 4,000 unpatched Adobe Commerce and Magento stores have been compromised by exploiting critical vulnerability CVE-2024-34102. Sansec researchers reported that multiple threat actors have exploited a critical Adobe Commerce... Read more »

Cloudflare mitigated new record-breaking DDoS attack of 3.8 Tbps

October 3, 2024 add comment
Cloudflare recently mitigated a new record-breaking DDoS attack, peaking at 3.8 Tbps and 2.14 billion packets per second (Pps). Cloudflare reported that starting from early September, it has mitigated... Read more »

Telegram revealed it shared U.S. user data with law enforcement

October 3, 2024 add comment
Telegram fulfilled over a dozen U.S. law enforcement data requests this year, potentially revealing the IP addresses or phone numbers of 100+ users. Independent website 404 Media first revealed... Read more »

U.S. CISA adds Ivanti Endpoint Manager (EPM) flaw to its Known Exploited Vulnerabilities catalog

October 2, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Ivanti Endpoint Manager (EPM) vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the Ivanti... Read more »

14 New DrayTek routers’ flaws impacts over 700,000 devices in 168 countries

October 2, 2024 add comment
Multiple flaws in DrayTek residential and enterprise routers can be exploited to fully compromise vulnerable devices. Forescout researchers discovered 14 new vulnerabilities in DrayTek routers, two of which have... Read more »

Rhadamanthys information stealer introduces AI-driven capabilities

October 2, 2024 add comment
The Rhadamanthys information stealer has been upgraded with advanced features, including the use of artificial intelligence (AI) for optical character recognition (OCR). Researchers at the Recorded Future’s Insikt group... Read more »

Critical Zimbra Postjournal flaw CVE-2024-45519 actively exploited in the wild. Patch it now!

October 2, 2024 add comment
Threat actors attempt to exploit recently disclosed vulnerability CVE-2024-45519 in Synacor’s Zimbra Collaboration. Proofpoint cybersecurity researchers reported that threat actors are attempting to exploit a recently disclosed vulnerability, tracked... Read more »
Subscribe to our Newsletter