CyberSecurity, critical RCE vulnerability for Ghostscript
The CVE-2023-36664 is caused by a not properly handle permission validation for pipe devices. The interpreter for the PostScript language and PDF files released fixes
Cybercrime, someone is installing the Tsunami DDoS Bot on Linux SSH servers
ASEC cybersecurity experts: Threat Actors also spread various other malware such as ShellBot, XMRig CoinMiner, and Log Cleaner.
Cybercrime, Alchimist and Insekt target Mac, Linux and Windows
Cisco Talos cybersecurity experts: the first one is a new attack framework and the second a malware, a RAT. Both are written in Golang.
Cybercrime, here it comes Shikitega: a new Linux IoT devices malware
AT&T cybersecurity experts: Delivered in a multistage infection chain, It also executes XMRig Monero miner.
Cybercrime, Luna is a new ransomware offered only to Russian affiliates
Kaspersky cybersecurity experts: The malware, written in Rust, encrypts files on Windows, Linux and ESXi. It uses as encryption scheme an X25519-AES combination.
Cybercrime, Panchan is a new botnet and SSH worm targeting Linux servers
Akamai cybersecurity experts: It’s written in golang and and utilizes its built-in concurrency features to maximize spreadability and execute malware modules.
Cybercrime, Symbiote is a new Linux malware nearly impossible to detect
Intezer-BlackBerry cybersecurity experts: Once the malicious code is in the machine, it hides itself and any other malware, making infections very hard to detect.
Cybercrime, Cheerscript is a new Linux ransomware targeting VMware ESXi servers
Trend Micro cybersecurity experts: The malware employs the double extortion scheme and renames the files it will encrypt.
Cybercime, NginRAT targets the E-Commerce Nginx web server
Sansec cybersecurity experts: The new parasitic malware, spread by CronRAT, hijacks a host Nginx application to masquerade its presence.
Cybercrime, FontOnLake is a new malware targeting Linux
ESET cybersecurity experts: To collect data or conduct other malicious activity, it uses modified legitimate binaries that are adjusted to load further components.