Recent months have seen an uptick in the number of Geacon payloads appearing on VirusTotal, a Golang implementation of Cobalt Strike specifically designed for targeting Apple macOS systems. According to SentinelOne’s security researchers Phil Stokes and Dinesh Devadoss, some of…
Due to VMware’s popularity in the virtualization field and its prominence in many organization’s IT systems, their virtual infrastructure products have become highly attractive targets for attackers. This increase in attacks is due to a lack of security tools, inadequate…
An ongoing phishing campaign known as MEME#4CHAN has been uncovered in the wild, which uses a peculiar attack chain to deliver XWorm malware to targeted systems. Den Iuzvyk, Tim Peck, and Oleg Kolesnikov of Securonix recently revealed that the campaign…
CVE-2023-29324 is a new vulnerability in the Windows MSHTML platform. CVE-2023-29324 Technical Overview: What Is Known So Far First of, let’s explain what the MSHTML platform is. MSHTML, commonly referred to as Trident, is the browser engine used by Microsoft’s…
Microsoft has released its May 2023 Patch Tuesday updates to tackle 38 security issues, including one zero-day bug that is reportedly being exploited in the wild. Microsoft’s May 2023 Patch Tuesday According to Trend Micro’s Zero Day Initiative (ZDI), this…
FortiGuard Labs recently warned in an outbreak alert of a five-year-old flaw being abused by threat actors, affecting TBK digital video recording (DVR) devices. This severe security vulnerability, which has been designated CVE-2018-9995 (CVSS score: 9.8), is a critical authentication…
Cybersecurity researchers recently uncovered several malicious campaigns which used Google ads to disseminate malware like Gozi, RedLine, Vidar, Cobalt Strike, SectoRAT, and Royal Ransomware, masking them as legitimate applications such as 7-ZIP, VLC, OBS, Notepad++, CCleaner, TradingView, and Rufus. One…
Maintainers of the Apache Superset open source data visualization software have issued updates to address a security vulnerability, tracked as CVE-2023-27524, with a CVSS score of 8.9. This vulnerability, which is present in versions 2.0.1 and prior, is caused by…
Cisco recently addressed a highly severe vulnerability in one of its products. Cisco recently released an advisory detailing a critical command injection flaw found in their Industrial Network Director. The vulnerability has been identified as CVE-2023-20036, with a CVSS score…
The vm2 JavaScript library has just released two new patches to mitigate two critical vulnerabilities, CVE-2023-29199 and CVE-2023-30547, both rated 9.8 on the CVSS scoring system. Versions 3.9.16 and 3.9.17, respectively, contain the fixes for the bugs which enable an…
The malicious Goldoson app was downloaded more than 100 million times from the Google Play Store, causing an Android-based malware outbreak. Cybersecurity researchers recently identified a malicious Android strain called Goldoson, which has infiltrated more than 60 applications on the…
CVE-2023-20963 is a highly severe Android vulnerability used as a zero-day attack. What Is CVE-2023-20963 and Why Is It Dangerous? The United States Cybersecurity and Infrastructure Security Agency (CISA) released recently a high-severity warning in regards to an Android vulnerability…
Yet another Patch Tuesday has rolled out, addressing a total of 97 security vulnerabilities in various Microsoft products. April 2023 Patch Tuesday: What Has Been Patched? This Tuesday, Microsoft released a set of 97 security updates to address various flaws…
Apple has released emergency updates to address two actively exploited zero-day flaws on older iPhones, iPads, and Macs. The company stated that they are aware of a report that this issue may have been actively exploited. CVE-2023-28206, CVE-2023-28205 Zero-Days The…
The Cybersecurity and Infrastructure Security Agency, shortly known as CISA, has just added five new security flaws to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. Since the risks are severe, immediate actions to remediate the…
Security researchers uncover a new clipper malware campaign targeting Portuguese speakers. Meet CryptoClippy Palo Alto’s Unit 42 team recently uncovered a malicious campaign that is targeting Portuguese speakers with a type of malware known as a cryptocurrency clipper (clipper malware).…
This week, HP released a security bulletin regarding a critical-severity vulnerability affecting the firmware of some business-grade printers. The vulnerability, tracked as CVE-2023-1707, impacts approximately 50 models of HP Enterprise LaserJet and HP LaserJet Managed Printers. CVE-2023-1707: HP Printer Vulnerability…
Security researchers discovered a new, highly sophisticated ransomware. Check Point Research (CPR) and Check Point Incident Response Team (CPIRT) identified a previously unknown ransomware strain, dubbed Rorschach, that was deployed against a US-based company. Rorschach does not bear any similarities…
On Monday, Western Digital, a popular data storage devices maker, revealed that its systems had been accessed without authorization on March 26, 2023. An unnamed third party was able to gain access to some of the company’s systems, according to…
Microsoft addressed a serious vulnerability that impacted the Azure Active Directory (ADD). The ADD vulnerability impacted several crucial applications and could lead to unauthorized access. One of the exposed applications powers the Bing.com search engine. The vulnerability allowed for modifying…
