Internet Security

Experts published PoC exploits for Arcserve UDP authentication bypass issue

June 29, 2023 add comment
Data protection firm Arcserve addressed an authentication bypass vulnerability in its Unified Data Protection (UDP) backup software. Data protection vendor Arcserve addressed a high-severity bypass authentication flaw, tracked as... Read more »

Using Electromagnetic Fault Injection Attacks to take over drones

June 28, 2023 add comment
Electromagnetic fault injection (EMFI) attacks on drones can potentially allow attackers to achieve arbitrary code execution and take over them. While the use of drones continues to grow, researchers... Read more »

Experts warn of a spike in May and June of 8Base ransomware attacks

June 28, 2023 add comment
Researchers warn of a massive spike in May and June 2023 of the activity associated with the ransomware group named 8Base. VMware Carbon Black researchers observed an intensification of the... Read more »

Critical SQL Injection flaws in Gentoo Soko can lead to Remote Code Execution

June 28, 2023 add comment
SQL injection vulnerabilities in Gentoo Soko could lead to remote code execution (RCE) on impacted systems. SonarSource researchers discovered two SQL injection vulnerabilities in Gentoo Soko, collectively tracked as... Read more »

EncroChat dismantling led to 6,558 arrests and the seizure of $979M in criminal funds

June 28, 2023 add comment
Europol announced that the takedown of the EncroChat encrypted chat network has led to the arrest of 6,558 people and the seizure of $979 million in illicit funds. Europol... Read more »

Mockingjay process injection technique allows EDR bypass

June 27, 2023 add comment
Mockingjay is a new process injection technique that can be exploited to bypass security solutions to execute malware on compromised systems. A new process injection technique dubbed Mockingjay can... Read more »

Experts found hundreds of devices within federal networks having internet-exposed management interfaces

June 27, 2023 add comment
Researchers at Censys have identified hundreds of devices deployed within federal networks that have internet-exposed management interfaces. Researchers at Censys have analyzed the attack surfaces of more than 50... Read more »

Schneider Electric and Siemens Energy are two more victims of a MOVEit attack

June 27, 2023 add comment
Clop ransomware group added five new victims of MOVEit attacks to its dark web leak site, including Schneider Electric and Siemens Energy. The Clop ransomware group added five new... Read more »

JOKERSPY used to target a cryptocurrency exchange in Japan

June 27, 2023 add comment
An unnamed Japanese cryptocurrency exchange was the victim of a cyber attack aimed at deploying an Apple macOS backdoor named JokerSpy. Elastic Security Labs researchers provided details about a... Read more »

Citizen of Croatia charged with running the Monopoly Market drug marketplace

June 26, 2023 add comment
Milomir Desnica, a citizen of Croatia and Serbia, has been charged with running the Monopoly Market drug darknet marketplace. Milomir Desnica (33), a citizen of Croatia and Serbia, has... Read more »
Subscribe to our Newsletter