Internet Security

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

June 17, 2022 add comment
Experts uncovered an enterprise-grade surveillance malware dubbed Hermit used to target individuals in Kazakhstan, Syria, and Italy since 2019. Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used... Read more »

A Microsoft 365 feature can ransom files on SharePoint and OneDriveCould

June 17, 2022 add comment
Experts discovered a feature in Microsoft 365 suite that could be abused to encrypt files stored on SharePoint and OneDrive and target cloud infrastructure. Researchers from Proofpoint reported that... Read more »

BlackCat Ransomware affiliates target unpatched Microsoft Exchange servers

June 16, 2022 add comment
The BlackCat ransomware gang is targeting unpatched Exchange servers to compromise target networks, Microsoft warns. Microsoft researchers have observed BlackCat ransomware gang targeting unpatched Exchange servers to compromise organizations worldwide. The compromise of... Read more »

ALPHV/BlackCat ransomware gang starts publishing victims’ data on the clear web

June 16, 2022 add comment
ALPHV/BlackCat ransomware group began publishing victims’ data on the clear web to increase the pressure on them and force them to pay the ransom. ALPHV/BlackCat ransomware group has adopted a new... Read more »

Researchers disclosed a remote code execution flaw in Fastjson Library

June 16, 2022 add comment
Researchers disclosed a remote code execution vulnerability, tracked as CVE-2022-25845, in the popular Fastjson library. Cybersecurity researchers from JFrog disclosed details of a now patched high-severity security vulnerability in the popular Fastjson... Read more »

Cisco fixed a critical Bypass Authentication flaw in Cisco ESA and Secure Email and Web Manager

June 16, 2022 add comment
Cisco addressed a critical bypass authentication flaw in Cisco Email Security Appliance (ESA) and Secure Email and Web Manager. Cisco addressed a critical bypass authentication vulnerability affecting Email Security... Read more »

Malicious apps continue to spread through the Google Play Store

June 16, 2022 add comment
Researchers at antivirus firm Dr. Web discovered malware in the Google Play Store that was downloaded two million times. An investigation conducted by the antivirus firm Dr. Web in... Read more »

Hertzbleed Side-Channel Attack allows to remotely steal encryption keys from AMD and Intel chips

June 15, 2022 add comment
Hertzbleed attack: Researchers discovered a new vulnerability in modern Intel and AMD chips that could allow attackers to steal encryption keys. Researchers from University of Texas, University of Illinois... Read more »

A critical flaw in Citrix Application Delivery Management allows resetting admin passwords

June 15, 2022 add comment
Citrix fixed a critical flaw in Citrix Application Delivery Management (ADM), tracked as CVE-2022-27511, that can allow attackers to reset admin passwords. Citrix fixed a critical vulnerability in Citrix... Read more »

Panchan Golang P2P botnet targeting Linux servers in cryptomining campaign

June 15, 2022 add comment
Researchers discovered a new Golang-based peer-to-peer (P2P) botnet, dubbed Panchan, targeting Linux servers in the education sector since March 2022. Akamai security researchers discovered a new Golang-based P2P Botnet, tracked... Read more »
Subscribe to our Newsletter