Internet Security

Microsoft Exchange flaw CVE-2024-21410 could impact up to 97,000 servers

February 21, 2024 add comment
Researchers from Shadowserver Foundation identified roughly 28,000 internet-facing Microsoft Exchange servers vulnerable to CVE-2024-21410. The vulnerability CVE-2024-21410 is a bypass vulnerability that can be exploited by an attacker to... Read more »

ConnectWise fixed critical flaws in ScreenConnect remote access tool

February 20, 2024 add comment
ConnectWise addressed two critical vulnerabilities in its ScreenConnect remote desktop access product and urges customers to install the patches asap. ConnectWise warns of the following two critical vulnerabilities in... Read more »

More details about Operation Cronos that disrupted Lockbit operation

February 20, 2024 add comment
Law enforcement provided additional details about the international Operation Cronos that led to the disruption of the Lockbit ransomware operation. Yesterday, a joint law enforcement action, code-named Operation Cronos,... Read more »

Cactus ransomware gang claims the theft of 1.5TB of data from Energy management and industrial automation firm Schneider Electric

February 20, 2024 add comment
The Cactus ransomware gang claims the theft of 1.5TB of data from the Energy management and industrial automation firm Schneider Electric. The Cactus ransomware group claims responsibility for pilfering... Read more »

Operation Cronos: law enforcement disrupted the LockBit operation

February 19, 2024 add comment
An international law enforcement operation codenamed ‘Operation Cronos’ led to the disruption of the LockBit ransomware operation. A joint law enforcement action, code-named Operation Cronos, conducted by law enforcement... Read more »

Anatsa Android banking Trojan expands to Slovakia, Slovenia, and Czechia

February 19, 2024 add comment
The Android banking trojan Anatsa resurged expanding its operation to new countries, including Slovakia, Slovenia, and Czechia. In November 2023, researchers from ThreatFabric observed a resurgence of the Anatsa banking... Read more »

A Ukrainian Raccoon Infostealer operator is awaiting trial in the US

February 19, 2024 add comment
The Raccoon Infostealer operator, Mark Sokolovsky, was extradited to the US from the Netherlands to appear in a US court. In October 2020, the US Justice Department charged a... Read more »

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

February 19, 2024 add comment
An APT group, tracked as TAG-70, linked to Belarus and Russia exploited XSS flaws in Roundcube webmail servers to target over 80 organizations. Researchers from Recorded Future’s Insikt Group... Read more »

How BRICS Got “Rug Pulled” – Cryptocurrency Counterfeiting is on the Rise

February 19, 2024 add comment
Resecurity has identified an increasing trend of cryptocurrency counterfeiting, the experts found several tokens impersonating major brands, government organizations and national fiat currencies. Resecurity has identified an increasing trend... Read more »

SolarWinds addressed critical RCEs in Access Rights Manager (ARM)

February 19, 2024 add comment
SolarWinds addressed three critical vulnerabilities in its Access Rights Manager (ARM) solution, including two RCE bugs. SolarWinds has fixed several Remote Code Execution (RCE) vulnerabilities in its Access Rights... Read more »
Subscribe to our Newsletter