Cyber Security, vulnerability in Cisco’s Unified CCX
Brenden Meeder of Booz Allen Hamilton discovered the flaw that could led a remote attacker without credentials to install malware on the targeted device. Install the patch now!
Cyber Security, two new medium vulnerabilities on Linux Kernel
They allow an actor to perform a denial of service (DoS) attack. The first one at local level, the second one by remote. Install the updates to mitigate the risks!
Cyber Security, BIAS attacks are a cybercrime growing threat
According to a research, Bluetooth Impersonation Attacks exploit unpatched security bugs in chips and allow cybercrime to steal sensitive data with different scenarios.
Cybercrime leaked 8.4 billion documents in 2020 Q1
Atlas VPN cyber security experts: Most of the exposed data came from a single unprotected ElasticSearch server. Eleven data breaches exposed more than 100 million records each.
Cybercrime, there’s a new actor in the wild: RATicate
Sophos cyber security experts: It’s behind several waves of cyber attacks against industrial companies to drop RATs. All campaigns leveraged NSIS and several malware.
Iran suffered a new cyber warfare attack: incident or a message?
Tehran confirms intrusion in port of Shahid Rajaei computers, but denies ties with Kornak incident. Analysts, however, speculate that events are correlated and linked to Strait of Hormuz threats.
Cyber Espionage, Naikon is back with a new malware
Check Point cyber security experts: The China-linked APT exploited the Aria-body backdoor to attack several governments in APAC. It uses different infection chains to deliver the malicious code.
Cyber Warfare, US expose new North Korea’s malware
The cyber security experts: They are COPPERHEDGE, TAINTEDSCRIBE, and PEBBLEDASH: a RAT and two trojans. Last February six other HIDDEN COBRA’s malicious codes were discovered.
Cybercrime, COVID-19 themed malware exploit Cloud Environments
Palo Alto Networks cyber security experts: Over 300 coronavirus themed malicious code samples communicated with 20 unique IP addresses and domain indicators of compromise (IOCs).
WordPress, mass cybercrime scan to find XSS flaws
Wordfence cyber security experts: It seems to be the work of a single malicious actor, who uses JavaScript code to inoculate a backdoor, exploiting vulnerabilities in plugins.