TrickBot gang deploys new stealthy backdoor in phishing attacks
The BazarBackdoor malware poses a significant thereat to corporate networks, as it can be used to stealthily deploy ransomware or conduct other attacks.
Cybersecurity News - Page 384
Hackers are exploiting SQL injection zero-day flaw in Sophos XG Firewall
The attacker exploited the SQL injection vulnerability to ins ert a one-line command in to the firewall database.
Vulnerability summary for the week: April 24, 2020
Weekly vulnerability digest.
NSA, ASD issue a guidance for mitigating web shell malware
The report includes a list of web application vulnerabilities that are commonly exploited to install malware.
A 35,000-device Monero-mining botnet spread via infected USB drives
The researchers were able to sinkhole several C&C domains so that they could monitor the botnet’s activity.
Tag Barnacle group using hacked Revive ad servers to distribute malicious ads
The hackers are targeting Revive installations by injecting an obfuscated Javascript payload that gives them the ability to hijack and display their own ads.
Vietnam-linked hackers target Chinese organizations in charge of COVID-19 response
APT32 has been conducting a spearphishing campaign against Chinese targets in an attempt to collect information about coronavirus.
Zero-day in iOS allows to hack iPhones and iPads just by sending emails
The bugs have been exploited in the wild since at least 2018.
Hackers are using breached Nintendo accounts to buy Fortnite game currency
Nintendo recommends users to enable two-step verification for their Nintendo account.
RCE exploit released for dangerous flaws in IBM Data Risk Manager, IBM is working on a fix
Three separate flaws could be chained to achieve unauthenticated remote code execution as root on vulnerable systems.
Showing elements 3831 - 3840