There’s a new SonicWall vulnerability, identified as CVE-2022-22274. The vulnerability is critical, and resides in multiple firewall appliances. If weaponized, remote threat actors could perform arbitrary code execution and cause a denial-of-service (DoS) condition. CVE-2022-22274 SonicWall Vulnerability: Technical Description According…
A critical security vulnerability in Sophos Firewall was just disclosed. CVE-2022-1040 Sophos Firewall Vulnerability Tracked as CVE-2022-1040, the vulnerability is an authentication bypass in the User Portal and webadmin that could allow attackers to perform remote code execution attacks. Affected…
If you’re one of those conscious users who acquaint themselves with the software before they install it onto their computers, Microsoft security updates included, then this article is for you. When you pay attention to the small print, and in…
Vulnerabilities, vendors and enterprises. The three words often come together, to the horror of all concerned sites. Enterprises often lack sufficient patch management policy and incident response groups, or disregard the importance of proper education on security-related subjects. Thus, the…
Do you play Elden Ring? Then note that security researchers disclosed a vulnerability in the game that traps players in an infinite death loop. Have You Been Trapped in an Elden Ring Death Loop? Reportedly, the latest version of the…
А recently discovered Redis vulnerability has been used in attacks against servers. According to the official advisory, Redis, a persistent key-value database, due to a packaging issue, is prone to a Debian-specific, Lua sandbox escape. Exploiting the vulnerability could result…
If you haven’t updated your Chrome browser to version 99.0.4844.84, you should do it immediately. If you don’t, you are risking your security, as Google recently reported a new vulnerability in Chrome. The vulnerability in question has been described as…
Last July, we wrote about the emergence of a new ransomware, known as Diavol. Fortunately, security researchers were able to develop a decryption tool to help victims of the ransomware restore their files. Diavol Ransomware Decryption Tool Now Available Diavol…
Two new VMware vulnerabilities have been disclosed, CVE-2022-22951 and CVE-2022-22952, both rated 9.1 on the CVSS scale. The flaws affect the Carbon Black App Control platform, and could be exploited in arbitrary code execution attacks against vulnerable Windows systems. The…
Security researchers discovered a new malware distributed in a still-ongoing malicious campaign, called Hodur. The malware is similar to a previous malware, called Thor, and had been attributed to the Chinese Mustang Panda threat group. Hodur Backdoor Malware Campaign: What…
A new macOS variant of a malware implant has been discovered. The so-called Gimmick malware is attributed to a threat group, known as Storm Cloud. The Gimmick malware has been described as feature-rich and multi-platform, using public cloud hosting services,…
Security researchers reported several new vulnerabilities in Dell BIOS that could lead to remote code execution attacks. The said, highly severe vulnerabilities are tracked as CVE-2022-24415, CVE-2022-24416, CVE-2022-24419, CVE-2022-24420, and CVE-2022-24421, with a severity rating of 8.2 out of 10…
Browser-in-the-browser (BitB) is a new type of attack that can be leveraged to simulate a browser window within the browser to spoof a legitimate domain. The technique can be used to perform credible phishing attacks. Browser-in-the-Browser Phishing Technique Explained Discovered…
A new rootkit has been detected in the wild, targeting Oracle Solaris systems and aiming at ATMs. According to Mandiant research and analysis, the so-called UNC2891 threat actors initiated rootkit intrusions that appeared to be financially motivated, in some cases…
DirtyMoe is the name of a new malware sample with worming capabilities (with cryptomining as a primary purpose) analyzed by Avast researchers. The analysis reveals that the worming module targets older, well-known vulnerabilities, such as Eternal blue and Hot Potato.…
Have you heard of protestware? Researchers have been tracking the so-called protestware projects across GitHub with recently added code that displays “Stand with Ukraine” messages. The same researchers are also tracking several code packages, recently modified to delete files on…
A new Intel 471 whitepaper throws light on the ransomware variants detected in the fourth quarter of 2021. 722 ransomware attacks were detected during the fourth quarter of last year, which is an increase of 110 attacks recorded from the…
Security researchers disclose another data wiper aimed at Ukraine, CaddyWiper. CaddyWiper Was Compiled Hours Before Deployment CaddyWiper is a destructive malware discovered by ESET researchers. The wiper was first observed on March 14, around 9:38 UTC, and according to caddy.exe…
Security researcher Nick Gregory recently discovered and reported a new Linux kernel vulnerability. Tracked as CVE-2022-25636, the issue impacts Linux kernel versions 5.4 through 5.6.10. The vulnerability is triggered by a heap-of-bounds write in the Netfilter subcomponent of the kernel,…
Russia currently offers its own TLS (Transport Layer Security) CA (certificate authority) that should fix the issue of renewing certificates issued by other countries. Russia’s New TLS Certificate Authority The event is connected to the numerous sanctions imposed by western…
