Internet Security

Golang-Based Botnet GoBruteforcer targets web servers

March 13, 2023 add comment
A recently discovered Golang-based botnet, dubbed GoBruteforcer, is targeting web servers running FTP, MySQL, phpMyAdmin, and Postgres services Researchers from Palo Alto Networks Unit 42 recently discovered a Golang-based... Read more »

CISA adds Plex Media Server bug, exploited in LastPass attack, to Known Exploited Vulnerabilities Catalog

March 13, 2023 add comment
US CISA added remote code execution vulnerability in Plex Media Server to its Known Exploited Vulnerabilities Catalog. U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a remote code... Read more »

Dark Pink APT targets Govt entities in South Asia

March 13, 2023 add comment
Researchers reported that Dark Pink APT employed a malware dubbed KamiKakaBot against Southeast Asian targets. In February 2023, EclecticIQ researchers spotted multiple KamiKakaBot malware samples that were employed by... Read more »

The risk of pasting confidential company data into ChatGPT

March 13, 2023 add comment
Experts warn that employees are providing sensitive corporate data to the popular artificial intelligence chatbot model ChatGPT. Researchers from Cyberhaven Labs analyzed the use of ChatGPT by 1.6 million... Read more »

Security Affairs newsletter Round 410 by Pierluigi Paganini

March 12, 2023 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. If you want... Read more »

Acronis states that only one customer’s account has been compromised. Much ado about nothing

March 12, 2023 add comment
Acronis downplays the severity of the recent security breach explaining that only a single customer’s account was compromised. The CISO of Acronis downplayed a recent intrusion, revealing that only... Read more »

Cisco fixed CVE-2023-20049 DoS flaw affecting enterprise routers

March 12, 2023 add comment
Cisco fixed a high-severity DoS vulnerability (CVE-2023-20049) in IOS XR software that impacts several enterprise routers. Cisco has released security updates to address a high-severity DoS vulnerability, tracked as... Read more »

PlugX malware delivered by exploiting flaws in Chinese programs

March 11, 2023 add comment
Researchers observed threat actors deploying PlugX malware by exploiting flaws in Chinese remote control programs Sunlogin and Awesun. Researchers at ASEC (AhnLab Security Emergency response Center) observed threat actors... Read more »

Prometei botnet evolves and infected +10,000 systems since November 2022

March 11, 2023 add comment
A new version of the Prometei botnet has infected more than 10,000 systems worldwide since November 2022, experts warn. Cisco Talos researchers reported that the Prometei botnet has infected more than... Read more »

CISA adds VMware’s Cloud Foundation bug to Known Exploited Vulnerabilities Catalog

March 11, 2023 add comment
US CISA added an actively exploited vulnerability in VMware’s Cloud Foundation to its Known Exploited Vulnerabilities Catalog. U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability... Read more »
Subscribe to our Newsletter