Internet Security

Veeam fixed multiple flaws in Veeam ONE, including critical issues

November 7, 2023 add comment
Veeam addressed multiple vulnerabilities in its Veeam ONE IT infrastructure monitoring and analytics platform, including two critical issues. Veeam addressed four vulnerabilities (CVE-2023-38547, CVE-2023-38548, CVE-2023-38549, CVE-2023-41723) in the Veeam... Read more »

Pro-Palestinian hackers group ‘Soldiers of Solomon’ disrupted the production cycle of the biggest flour production plant in Israel

November 7, 2023 add comment
Pro-Palestinian hackers group ‘Soldiers of Solomon’ claims to have hacked one of the largest Israeli flour plants causing severe damage to the operations. The Pro-Palestinian hackers group ‘Soldiers of... Read more »

Iranian Agonizing Serpens APT is targeting Israeli entities with destructive cyber attacks

November 7, 2023 add comment
Iran-linked Agonizing Serpens group has been targeting Israeli organizations with destructive cyber attacks since January. Iran-linked Agonizing Serpens group (aka Agrius, BlackShadow, Pink Sandstorm, DEV-0022) has been targeting Israeli organizations in higher education... Read more »

Critical Confluence flaw exploited in ransomware attacks

November 6, 2023 add comment
Experts warn threat actors that started exploiting a recent critical flaw CVE-2023-22518 in Confluence Data Center and Confluence Server. Over the weekend threat actors started exploiting a recently disclosed... Read more »

QNAP fixed two critical vulnerabilities in QTS OS and apps

November 6, 2023 add comment
Taiwanese vendor QNAP warns of two critical command injection flaws in the QTS operating system and applications on its NAS devices. Taiwanese vendor QNAP Systems addressed two critical command... Read more »

Attackers use Google Calendar RAT to abuse Calendar service as C2 infrastructure

November 6, 2023 add comment
Google warns of multiple threat actors that are leveraging its Calendar service as a command-and-control (C2) infrastructure. Google warns of multiple threat actors sharing a public proof-of-concept (PoC) exploit, named Google... Read more »

Socks5Systemz proxy service delivered via PrivateLoader and Amadey

November 6, 2023 add comment
Threat actors infected more than 10,000 devices worldwide with the ‘PrivateLoader’ and ‘Amadey’ loaders to recruit them into the proxy botnet ‘Socks5Systemz.’ Bitsight researchers uncovered a proxy botnet delivered,... Read more »

US govt sanctioned a Russian woman for laundering virtual currency on behalf of threat actors

November 5, 2023 add comment
The Treasury Department sanctioned a Russian woman accused of laundering virtual currency on behalf of cybercriminals. The Department of the Treasury’s Office of Foreign Assets Control (OFAC) on Friday... Read more »

Security Affairs newsletter Round 444 by Pierluigi Paganini – INTERNATIONAL EDITION

November 5, 2023 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new... Read more »

Lazarus targets blockchain engineers with new KandyKorn macOS Malware

November 5, 2023 add comment
North Korea-linked Lazarus group is using new KandyKorn macOS Malware in attacks against blockchain engineers. North Korea-linked Lazarus APT group were spotted using new KandyKorn macOS malware in attacks... Read more »
Subscribe to our Newsletter