Malware & Threats Critical WordPress Plugin Flaws Exploited to Inject Malicious Scripts and Backdoors Malicious campaign exploits high-severity XSS flaws in three WordPress plugins to backdoor websites. Ionut ArghireMay 30, 2024
Malware & Threats TrickBot and Other Malware Droppers Disrupted by Law Enforcement The TrickBot botnet and other malware droppers have been targeted by international law enforcement in Operation Endgame. Ionut ArghireMay 30, 2024
Malware & Threats Okta Warns of Credential Stuffing Attacks Targeting Cross-Origin Authentication Okta raises the alarm on credential stuffing attacks targeting endpoints used for cross-origin authentication. Ionut ArghireMay 30, 2024
Malware & Threats Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested The US announced that the 911 S5 (Cloud Router) botnet, likely the world’s largest, has been dismantled and its administrator arrested. Eduard KovacsMay 30, 2024
Malware & Threats Check Point VPN Attacks Involve Zero-Day Exploited Since April The recently disclosed Check Point VPN attacks involve the zero-day vulnerability CVE-2024-24919, which allows hackers to obtain passwords. Eduard KovacsMay 30, 2024
ICS/OT JAVS Courtroom Audio-Visual Software Installer Serves Backdoor Backdoored JAVS courtroom recording and management software installer puts thousands at risk of complete takeover. Ionut ArghireMay 24, 2024
Malware & Threats New ‘Antidot’ Android Trojan Allows Cybercriminals to Hack Devices, Steal Data The Antidot Android banking trojan snoops on users and steals their credentials, contacts, and SMS messages. Ionut ArghireMay 17, 2024
Malware & Threats Microsoft Quick Assist Tool Abused for Ransomware Delivery The Black Basta group abuses remote connection tool Quick Assist in vishing attacks leading to ransomware deployment. Ionut ArghireMay 17, 2024
Fraud & Identity Theft Threat Actors Abuse GitHub to Distribute Multiple Information Stealers Russian-speaking threat actors are caught abusing a GitHub profile to distribute information stealers posing as legitimate software. Ionut ArghireMay 15, 2024
Malware & Threats 400,000 Linux Servers Hit by Ebury Botnet The Ebury Linux botnet has ensnared over 400,000 Linux systems in 15 years, with roughly 100,000 still infected. Ionut ArghireMay 15, 2024
Malware & Threats Microsoft Warns of Active Zero-Day Exploitation, Patches 60 Windows Vulnerabilities Patch Tuesday: Microsoft documents 60 security flaws in multiple software products and flags an actively exploited Windows zero-day for urgent attention. Ryan NaraineMay 14, 2024
Malware & Threats Adobe Patches Critical Flaws in Reader, Acrobat Adobe documents multiple code execution flaws in a wide range of products, including the widely deployed Adobe Acrobat and Reader software. Ryan NaraineMay 14, 2024