Internet Security

AuKill tool uses BYOVD attack to disable EDR software

April 24, 2023 add comment
Ransomware operators use the AuKill tool to disable EDR software through Bring Your Own Vulnerable Driver (BYOVD) attack. Sophos researchers reported that threat actors are using a previously undocumented... Read more »

Experts released PoC Exploit code for actively exploited PaperCut flaw

April 24, 2023 add comment
Threat actors are exploiting PaperCut MF/NG print management software flaws in attacks in the wild, while researchers released PoC exploit code. Hackers are actively exploiting PaperCut MF/NG print management... Read more »

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

April 24, 2023 add comment
EvilExtractor is a new “all-in-one” info stealer for Windows that is being advertised for sale on dark web cybercrime forums. Fortinet FortiGuard Labs researchers discovered a new “all-in-one” info... Read more »

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

April 24, 2023 add comment
Print management software provider PaperCut confirmed ongoing active exploitation of CVE-2023-27350 vulnerability. On April 19th, Print management software provider PaperCut confirmed that it is aware of the active exploitation of... Read more »

Hackers can hack organizations using data found on their discarded enterprise network equipment

April 24, 2023 add comment
ESET researchers explained that enterprise network equipment that was discarded, but not destroyed, could reveal corporate secrets. ESET researchers purchased a few used routers to set up a test... Read more »

Health insurer Point32Health suffered a ransomware attack

April 23, 2023 add comment
Non-profit health insurer Point32Health suffered a ransomware attack and has taken systems offline in response to the incident. Non-profit health insurer Point32Health has taken systems offline in response to... Read more »

Experts spotted first-ever crypto mining campaign leveraging Kubernetes RBAC

April 23, 2023 add comment
Experts warn of a large-scale cryptocurrency mining campaign exploiting Kubernetes (K8s) Role-Based Access Control (RBAC). Cloud security firm Aqua discovered a large-scale cryptocurrency mining campaign exploiting Kubernetes (K8s) Role-Based... Read more »

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

April 23, 2023 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new... Read more »

Abandoned Eval PHP WordPress plugin abused to backdoor websites

April 22, 2023 add comment
Threat actors were observed installing the abandoned Eval PHP plugin on compromised WordPress sites for backdoor deployment. Researchers from Sucuri warned that threat actors are installing the abandoned Eval... Read more »

CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog

April 22, 2023 add comment
US Cybersecurity and Infrastructure Security Agency (CISA) added MinIO, PaperCut, and Chrome vulnerabilities to its Known Exploited Vulnerabilities catalog. U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added the... Read more »
Subscribe to our Newsletter