Internet Security

Royal Mail jeopardizes users with open redirect flaw

November 8, 2023 add comment
Royal Mail has left an open redirect vulnerability on one of its sites, exposing its customers to phishing attacks and malware infections. The centuries-old Royal Mail is the largest... Read more »

North Korea-linked APT BlueNoroff used new macOS malware ObjCShellz

November 8, 2023 add comment
The North Korea-linked APT BlueNoroff used a new strain of macOS malware strain dubbed ObjCShellz, Jamf Threat Labs reported. Researchers from Jamf Threat Labs discovered a new macOS malware strain... Read more »

Marina Bay Sands Luxury Hotel in Singapore Suffers a Data Breach

November 7, 2023 add comment
The iconic integrated resort Marina Bay Sands in Singapore has disclosed a data breach that impacted 665,000 customers. The Marina Bay Sands (MBS) luxury resort in Singapore has suffered... Read more »

Veeam fixed multiple flaws in Veeam ONE, including critical issues

November 7, 2023 add comment
Veeam addressed multiple vulnerabilities in its Veeam ONE IT infrastructure monitoring and analytics platform, including two critical issues. Veeam addressed four vulnerabilities (CVE-2023-38547, CVE-2023-38548, CVE-2023-38549, CVE-2023-41723) in the Veeam... Read more »

Pro-Palestinian hackers group ‘Soldiers of Solomon’ disrupted the production cycle of the biggest flour production plant in Israel

November 7, 2023 add comment
Pro-Palestinian hackers group ‘Soldiers of Solomon’ claims to have hacked one of the largest Israeli flour plants causing severe damage to the operations. The Pro-Palestinian hackers group ‘Soldiers of... Read more »

Iranian Agonizing Serpens APT is targeting Israeli entities with destructive cyber attacks

November 7, 2023 add comment
Iran-linked Agonizing Serpens group has been targeting Israeli organizations with destructive cyber attacks since January. Iran-linked Agonizing Serpens group (aka Agrius, BlackShadow, Pink Sandstorm, DEV-0022) has been targeting Israeli organizations in higher education... Read more »

Critical Confluence flaw exploited in ransomware attacks

November 6, 2023 add comment
Experts warn threat actors that started exploiting a recent critical flaw CVE-2023-22518 in Confluence Data Center and Confluence Server. Over the weekend threat actors started exploiting a recently disclosed... Read more »

QNAP fixed two critical vulnerabilities in QTS OS and apps

November 6, 2023 add comment
Taiwanese vendor QNAP warns of two critical command injection flaws in the QTS operating system and applications on its NAS devices. Taiwanese vendor QNAP Systems addressed two critical command... Read more »

Attackers use Google Calendar RAT to abuse Calendar service as C2 infrastructure

November 6, 2023 add comment
Google warns of multiple threat actors that are leveraging its Calendar service as a command-and-control (C2) infrastructure. Google warns of multiple threat actors sharing a public proof-of-concept (PoC) exploit, named Google... Read more »

Socks5Systemz proxy service delivered via PrivateLoader and Amadey

November 6, 2023 add comment
Threat actors infected more than 10,000 devices worldwide with the ‘PrivateLoader’ and ‘Amadey’ loaders to recruit them into the proxy botnet ‘Socks5Systemz.’ Bitsight researchers uncovered a proxy botnet delivered,... Read more »
Subscribe to our Newsletter