Internet Security

Iranian Agonizing Serpens APT is targeting Israeli entities with destructive cyber attacks

November 7, 2023 add comment
Iran-linked Agonizing Serpens group has been targeting Israeli organizations with destructive cyber attacks since January. Iran-linked Agonizing Serpens group (aka Agrius, BlackShadow, Pink Sandstorm, DEV-0022) has been targeting Israeli organizations in higher education... Read more »

Critical Confluence flaw exploited in ransomware attacks

November 6, 2023 add comment
Experts warn threat actors that started exploiting a recent critical flaw CVE-2023-22518 in Confluence Data Center and Confluence Server. Over the weekend threat actors started exploiting a recently disclosed... Read more »

QNAP fixed two critical vulnerabilities in QTS OS and apps

November 6, 2023 add comment
Taiwanese vendor QNAP warns of two critical command injection flaws in the QTS operating system and applications on its NAS devices. Taiwanese vendor QNAP Systems addressed two critical command... Read more »

Attackers use Google Calendar RAT to abuse Calendar service as C2 infrastructure

November 6, 2023 add comment
Google warns of multiple threat actors that are leveraging its Calendar service as a command-and-control (C2) infrastructure. Google warns of multiple threat actors sharing a public proof-of-concept (PoC) exploit, named Google... Read more »

Socks5Systemz proxy service delivered via PrivateLoader and Amadey

November 6, 2023 add comment
Threat actors infected more than 10,000 devices worldwide with the ‘PrivateLoader’ and ‘Amadey’ loaders to recruit them into the proxy botnet ‘Socks5Systemz.’ Bitsight researchers uncovered a proxy botnet delivered,... Read more »

US govt sanctioned a Russian woman for laundering virtual currency on behalf of threat actors

November 5, 2023 add comment
The Treasury Department sanctioned a Russian woman accused of laundering virtual currency on behalf of cybercriminals. The Department of the Treasury’s Office of Foreign Assets Control (OFAC) on Friday... Read more »

Security Affairs newsletter Round 444 by Pierluigi Paganini – INTERNATIONAL EDITION

November 5, 2023 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new... Read more »

Lazarus targets blockchain engineers with new KandyKorn macOS Malware

November 5, 2023 add comment
North Korea-linked Lazarus group is using new KandyKorn macOS Malware in attacks against blockchain engineers. North Korea-linked Lazarus APT group were spotted using new KandyKorn macOS malware in attacks... Read more »

Kinsing threat actors probed the Looney Tunables flaws in recent attacks

November 4, 2023 add comment
Kinsing threat actors are exploiting the recently disclosed Linux privilege escalation flaw Looney Tunables to target cloud environments. Researchers are cloud security firm Aqua have observed threat actors exploiting the... Read more »

ZDI discloses four zero-day flaws in Microsoft Exchange

November 3, 2023 add comment
Researchers disclosed four zero-day flaws in Microsoft Exchange that can be remotely exploited to execute arbitrary code or disclose sensitive information on vulnerable installs. Trend Micro’s Zero Day Initiative... Read more »
Subscribe to our Newsletter