Internet Security

North Korea-linked APT Citrine Sleet exploit Chrome zero-day to deliver FudModule rootkit

August 31, 2024 add comment
North Korea-linked APT exploited the recently patched Google Chrome zero-day CVE-2024-7971 to deploy the FudModule rootkit. North Korea-linked group Citrine Sleet (aka AppleJeus, Labyrinth Chollima, UNC4736, Hidden Cobra) have exploited... Read more »

Fortra fixed two severe issues in FileCatalyst Workflow, including a critical flaw

August 30, 2024 add comment
Cybersecurity and automation company Fortra addressed two vulnerabilities in FileCatalyst Workflow software, including a critical-severity flaw. Cybersecurity and automation company Fortra released patches for two vulnerabilities in FileCatalyst Workflow.... Read more »

South Korea-linked group APT-C-60 exploited a WPS Office zero-day

August 30, 2024 add comment
South Korea-linked group APT-C-60 exploited a zero-day in the Windows version of WPS Office to target East Asian countries. South Korea-linked group APT-C-60 exploited a zero-day, tracked as CVE⁠-⁠2024⁠-⁠7262,... Read more »

Threat actors exploit Atlassian Confluence bug in cryptomining campaigns

August 30, 2024 add comment
Threat actors are actively exploiting a critical flaw in the Atlassian Confluence Data Center and Confluence Server in cryptocurrency mining campaigns. The critical vulnerability CVE-2023-22527  (CVSS score 10.0) in... Read more »

Russia-linked APT29 reused iOS and Chrome exploits previously developed by NSO Group and Intellexa

August 30, 2024 add comment
Russia-linked APT29 group was spotted reusing iOS and Chrome exploits previously developed by surveillance firms NSO Group and Intellexa. Google TAG (Threat Analysis Group) researchers observed the Russia-linked group... Read more »

Cisco addressed a high-severity flaw in NX-OS software

August 29, 2024 add comment
Cisco addressed multiple vulnerabilities impacting NX-OS software, including a high-severity flaw in the DHCPv6 relay agent. Cisco released security updates for NX-OS software that address multiple vulnerabilities. The most... Read more »

Corona Mirai botnet spreads via AVTECH CCTV zero-day 

August 29, 2024 add comment
An instance of the Corona Mirai botnet spreads via AVTECH CCTV zero-day and multiple previously known vulnerabilities. Akamai’s Security Intelligence and Response Team (SIRT) has detected a botnet campaign exploiting... Read more »

Telegram CEO Pavel Durov charged in France for facilitating criminal activities

August 29, 2024 add comment
French prosecutors charged CEO Telegram Pavel Durov with facilitating various criminal activities on the messaging platform. French prosecutors have formally charged Telegram CEO Pavel Durov with facilitating various criminal... Read more »

Iran-linked group APT33 adds new Tickler malware to its arsenal

August 29, 2024 add comment
Iran-linked group APT33 used new Tickler malware in attacks against organizations in the government, defense, satellite, oil and gas sectors. Microsoft researchers reported that the Iran-linked cyberespionage group APT33... Read more »

Young Consulting data breach impacts 954,177 individuals

August 28, 2024 add comment
A ransomware attack by the BlackSuit group on Young Consulting compromised the personal information of over 950,000 individuals. Software solutions provider Young Consulting disclosed a data breach impacting 950,000... Read more »
Subscribe to our Newsletter