Your blog category
Threat actors are actively exploiting a recently disclosed critical security flaw impacting Apache HugeGraph-Server that could lead to remote code execution attacks. Tracked as CVE-2024-27348 (CVSS score: 9.8), the vulnerability… Read More »Critical Apache HugeGraph Vulnerability Under Attack – Patch ASAP
Details have emerged about a “massive ad fraud operation” that leverages hundreds of apps on the Google Play Store to perform a host of nefarious activities. The campaign has been… Read More »‘Konfety’ Ad Fraud Uses 250+ Google Play Decoy Apps to Hide Malicious Twins
Identity-based threats on SaaS applications are a growing concern among security professionals, although few have the capabilities to detect and respond to them. According to the US Cybersecurity and Infrastructure… Read More »Threat Prevention & Detection in SaaS Environments – 101
The Iranian nation-state actor known as MuddyWater has been observed using a never-before-seen backdoor as part of a recent attack campaign, shifting away from its well-known tactic of deploying legitimate… Read More »Iranian Hackers Deploy New BugSleep Backdoor in Middle East Cyber Attacks
Cybersecurity researchers have identified two malicious packages on the npm package registry that concealed backdoor code to execute malicious commands sent from a remote server. The packages in question –… Read More »Malicious npm Packages Found Using Image Files to Hide Backdoor Code
An advanced persistent threat (APT) group called Void Banshee has been observed exploiting a recently disclosed security flaw in the Microsoft MHTML browser engine as a zero-day to deliver an… Read More »Void Banshee APT Exploits Microsoft MHTML Flaw to Spread Atlantida Stealer
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a critical security flaw impacting OSGeo GeoServer GeoTools to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of… Read More »CISA Warns of Actively Exploited RCE Flaw in GeoServer GeoTools Software
Russian security vendor Kaspersky has said it’s exiting the U.S. market nearly a month after the Commerce Department announced a ban on the sale of its software in the country… Read More »Kaspersky Exits U.S. Market Following Commerce Department Ban
Cybersecurity researchers said they discovered an accidentally leaked GitHub token that could have granted elevated access to the GitHub repositories of the Python language, Python Package Index (PyPI), and the… Read More »GitHub Token Leak Exposes Python’s Core Repositories to Potential Attacks
A threat actor that was previously observed using an open-source network mapping tool has greatly expanded their operations to infect over 1,500 victims. Sysdig, which is tracking the cluster under… Read More »CRYSTALRAY Hackers Infect Over 1,500 Victims Using Network Mapping Tool