Internet Security

Experts link AVRecon bot to the malware proxy service SocksEscort

July 31, 2023 add comment
The AVRecon botnet relies on compromised small office/home office (SOHO) routers since at least May 2021. In early July, researchers from Lumen Black Lotus Labs discovered the AVRecon botnet... Read more »

Three flaws in Ninja Forms plugin for WordPress impact 900K sites

July 31, 2023 add comment
Experts warn of vulnerabilities impacting the Ninja Forms plugin for WordPress that could be exploited for escalating privileges and data theft. The Ninja Forms plugin for WordPress is affected... Read more »

Experts warn attackers started exploiting Citrix ShareFile RCE flaw CVE-2023-24489

July 31, 2023 add comment
Researchers warn that threat actors started exploiting Citrix ShareFile RCE vulnerability CVE-2023-24489 in the wild. Citrix ShareFile is a widely used cloud-based file-sharing application, which is affected by the... Read more »

In 2022, more than 40% of zero-day exploits used in the wild were variations of previous issues

July 30, 2023 add comment
Google’s Threat Analysis Group Google states that more than 40% of zero-day flaws discovered in 2022 were variants of previous issues. The popular Threat Analysis Group (TAG) Maddie Stone... Read more »

New flaw in Ivanti Endpoint Manager Mobile actively exploited in the wild

July 30, 2023 add comment
Software firm Ivanti disclosed another security vulnerability impacting Endpoint Manager Mobile (EPMM), that it said actively exploited. Ivanti disclosed a new security vulnerability impacting Endpoint Manager Mobile (EPMM), tracked... Read more »

Security Affairs newsletter Round 430 by Pierluigi Paganini – International edition

July 30, 2023 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new... Read more »

CISA warns about SUBMARINE Backdoor employed in Barracuda ESG attacks

July 29, 2023 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns of threat actors deploying the SUBMARINE Backdoor in Barracuda ESG attacks. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) published... Read more »

Now Abyss Locker also targets VMware ESXi servers

July 29, 2023 add comment
A Linux variant of the Abyss Locker designed to target VMware ESXi servers appeared in the threat landscape, experts warn. The operators behind the Abyss Locker developed a Linux... Read more »

Russian APT BlueBravo targets diplomatic entities with GraphicalProton backdoor

July 28, 2023 add comment
Russia-linked BlueBravo has been spotted targeting diplomatic entities in Eastern Europe with the GraphicalProton Backdoor. The Russia-linked threat-state actor BlueBravo (aka APT29, Cloaked Ursa, and Midnight Blizzard, Nobelium) has been... Read more »

CoinsPaid blames North Korea-linked APT Lazarus for theft of $37M worth of cryptocurrency

July 28, 2023 add comment
Crypto-payments service provider CoinsPaid suffered a cyber attack that resulted in the theft of $37,200,000 worth of cryptocurrency. CoinsPaid, a crypto-payment service provider, fell victim to a cyber attack,... Read more »
Subscribe to our Newsletter