Internet Security

Gayfemboy Botnet targets Four-Faith router vulnerability

January 8, 2025 add comment
Gayfemboy, a Mirai botnet variant, has been exploiting a flaw in Four-Faith industrial routers to launch DDoS attacks since November 2024. The Gayfemboy botnet was first identified in February... Read more »

Meta replaces fact-checking with community notes post ‘Cultural Tipping Point’

January 8, 2025 add comment
Meta is replacing its fact-checking program with a “community notes” system, citing a shift in moderation strategy after a “cultural tipping point.” Meta CEO Mark Zuckerberg announced that the... Read more »

U.S. CISA adds Oracle WebLogic Server and Mitel MiCollab flaws to its Known Exploited Vulnerabilities catalog

January 8, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Oracle WebLogic Server and Mitel MiCollab flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added... Read more »

Threat actors breached the Argentina’s airport security police (PSA) payroll

January 7, 2025 add comment
Threat actors breached Argentina’s airport security police (PSA) payroll, stealing data and deducting 2,000-5,000 pesos from salaries. Threat actors have breached Argentina’s airport security police (PSA) and compromised the... Read more »

Moxa router flaws pose serious risks to industrial environmets

January 7, 2025 add comment
Moxa warns of two flaws in its routers and security appliances that enable privilege escalation and remote command execution. Moxa addressed privilege escalation and OS command injection vulnerabilities in... Read more »

US adds Tencent to the list of companies supporting Chinese military

January 7, 2025 add comment
US adds Chinese multinational technology and entertainment conglomerate Tencent to the list of companies supporting the Chinese military. The US Department of Defense has added Chinese multinational technology and... Read more »

Eagerbee backdoor targets govt entities and ISPs in the Middle East

January 7, 2025 add comment
Experts spotted new variants of the Eagerbee backdoor being used in attacks on government organizations and ISPs in the Middle East. Kaspersky researchers reported that new variants of the... Read more »

Nessus scanner agents went offline due to a faulty plugin update

January 6, 2025 add comment
Tenable disabled two Nessus scanner agent versions after a faulty plugin update caused agents to go offline. Tenable Nessus is a widely-used vulnerability scanning tool designed to identify and... Read more »

China-linked Salt Typhoon APT compromised more US telecoms than previously known

January 6, 2025 add comment
China-linked Salt Typhoon group that breached multiple US telecoms compromised more firms than previously known, WSJ says. The China-linked cyberespionage group Salt Typhoon targeted more US telecoms than previously... Read more »

PLAYFULGHOST backdoor supports multiple information stealing features

January 6, 2025 add comment
PLAYFULGHOST is a new malware family with capabilities including keylogging, screen and audio capture, remote shell access, and file transfer/execution. Google researchers analyzed a new malware family called PLAYFULGHOST that supports... Read more »
Subscribe to our Newsletter