Internet Security

Experts warn attackers started exploiting Citrix ShareFile RCE flaw CVE-2023-24489

July 31, 2023 add comment
Researchers warn that threat actors started exploiting Citrix ShareFile RCE vulnerability CVE-2023-24489 in the wild. Citrix ShareFile is a widely used cloud-based file-sharing application, which is affected by the... Read more »

In 2022, more than 40% of zero-day exploits used in the wild were variations of previous issues

July 30, 2023 add comment
Google’s Threat Analysis Group Google states that more than 40% of zero-day flaws discovered in 2022 were variants of previous issues. The popular Threat Analysis Group (TAG) Maddie Stone... Read more »

New flaw in Ivanti Endpoint Manager Mobile actively exploited in the wild

July 30, 2023 add comment
Software firm Ivanti disclosed another security vulnerability impacting Endpoint Manager Mobile (EPMM), that it said actively exploited. Ivanti disclosed a new security vulnerability impacting Endpoint Manager Mobile (EPMM), tracked... Read more »

Security Affairs newsletter Round 430 by Pierluigi Paganini – International edition

July 30, 2023 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new... Read more »

CISA warns about SUBMARINE Backdoor employed in Barracuda ESG attacks

July 29, 2023 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns of threat actors deploying the SUBMARINE Backdoor in Barracuda ESG attacks. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) published... Read more »

Now Abyss Locker also targets VMware ESXi servers

July 29, 2023 add comment
A Linux variant of the Abyss Locker designed to target VMware ESXi servers appeared in the threat landscape, experts warn. The operators behind the Abyss Locker developed a Linux... Read more »

Russian APT BlueBravo targets diplomatic entities with GraphicalProton backdoor

July 28, 2023 add comment
Russia-linked BlueBravo has been spotted targeting diplomatic entities in Eastern Europe with the GraphicalProton Backdoor. The Russia-linked threat-state actor BlueBravo (aka APT29, Cloaked Ursa, and Midnight Blizzard, Nobelium) has been... Read more »

CoinsPaid blames North Korea-linked APT Lazarus for theft of $37M worth of cryptocurrency

July 28, 2023 add comment
Crypto-payments service provider CoinsPaid suffered a cyber attack that resulted in the theft of $37,200,000 worth of cryptocurrency. CoinsPaid, a crypto-payment service provider, fell victim to a cyber attack,... Read more »

Monitor Insider Threats but Build Trust First

July 28, 2023 add comment
The issue of how to prevent insider threats without infringing on employee privacy is one that has been a hot topic of debate in recent years. Because insider threats... Read more »

Zimbra fixed actively exploited zero-day CVE-2023-38750 in ZCS

July 27, 2023 add comment
Zimbra addressed a zero-day vulnerability exploited in attacks aimed at Zimbra Collaboration Suite (ZCS) email servers. Two weeks ago Zimbra urged customers to manually install updates to fix a... Read more »
Subscribe to our Newsletter