26 April 2024

Cyber Security Week in Review: April 26, 2024

 Cyber Security Week in Review: April 26, 2024
In brief: Cisco and CrushFTP patch zero-days, researchers sinkhole C&C server used by PlugX malware, and more.

Latest Posts

US charges Samourai cryptomixer founders with laundering $100 million

US charges Samourai cryptomixer founders with laundering $100 million

The cryptocurrency mixer facilitated over $2 billion in illegal transactions.
25 April 2024
ArcaneDoor state-sponsored malware campaign strikes Cisco networking gear

ArcaneDoor state-sponsored malware campaign strikes Cisco networking gear

The attackers exploited two zero-day vulnerabilities in Cisco networking equipment.
25 April 2024
Iranian hackers exploit RMM tools to deliver malware

Iranian hackers exploit RMM tools to deliver malware

One of the aspects of MuddyWater's strategy involves exploiting Atera's free trial offers.
24 April 2024
Ongoing malware campaign targets multiple industries, distributes infostealers

Ongoing malware campaign targets multiple industries, distributes infostealers

The campaign leverages a CDN cache domain as a download server, hosting malicious HTA files and payloads.
24 April 2024

Popular Posts
Featured vulnerabilities
Multiple vulnerabilities in Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager and Safety Manager SC
High Patched | 26 Apr, 2024
XML external entity injection in IBM Security Guardium Key Lifecycle Manager
High Patched | 26 Apr, 2024
Resource exhaustion in IBM Security Guardium Key Lifecycle Manager (SKLM/GKLM)
Medium Patched | 26 Apr, 2024
Resource exhaustion in IBM Tivoli Composite Application Manager for Application Diagnostics
Medium Patched | 26 Apr, 2024
Multiple vulnerabilities in Hitachi Energy RTU500 Series
Low Patched | 26 Apr, 2024