2023

P2PInfect Worm: The Rising Cyber Threat to Redis Servers on Linux and Windows Systems

A newly identified cybersecurity menace, the P2PInfect worm, has been causing severe disruptions globally. This advanced malware targets Redis servers, exploiting their vulnerabilities and posing significant risks to both Linux and Windows systems. In-Depth Analysis: Operational Tactics: Implications: Preventive Measures: The P2PInfect worm represents a serious threat, exploiting Redis server vulnerabilities across Linux and Windows …

P2PInfect Worm: The Rising Cyber Threat to Redis Servers on Linux and Windows Systems Read More »

Critical Confluence and ActiveMQ Vulnerabilities Exploited by Ransomware Groups

Multiple ransomware groups are exploiting critical vulnerabilities in Atlassian Confluence and Apache ActiveMQ, as confirmed by cybersecurity firms like Rapid7, Arctic Wolf Labs, and Huntress. Rapid7 detected the exploitation of CVE-2023-22518 and CVE-2023-22515 in customer environments, leading to Cerber ransomware deployment. These vulnerabilities allow unauthorized creation of Confluence administrator accounts, compromising confidentiality, integrity, and availability. …

Critical Confluence and ActiveMQ Vulnerabilities Exploited by Ransomware Groups Read More »

Unveiling the Surge: Global DDoS Threat Landscape Report Q2 2023

A recent report from Cloudflare reveals that sophisticated Distributed Denial of Service (DDoS) attacks worldwide surged to 5.4 trillion in the second quarter of 2023, marking a 15% uptick from the first quarter. Despite many of these attacks being of short duration, the recovery process proved to be prolonged, significantly impacting daily business operations. Key …

Unveiling the Surge: Global DDoS Threat Landscape Report Q2 2023 Read More »

Rising Threat: Mallox Ransomware Surges by 174% in 2023, Unveiling Evolving Tactics and Recruitment Drive Amidst Broader Ransomware Surge

According to a recent report from Palo Alto Networks Unit 42, Mallox ransomware activities in 2023 have surged by 174%, showcasing a significant increase from the previous year. Mallox, adopting the double extortion trend common among ransomware threat actors, steals data before encrypting an organization’s files and then threatens to publish the stolen data on …

Rising Threat: Mallox Ransomware Surges by 174% in 2023, Unveiling Evolving Tactics and Recruitment Drive Amidst Broader Ransomware Surge Read More »

Charter Oak Federal Credit Union Faces Cybersecurity Challenge: Online Services Temporarily Disrupted

Charter Oak Federal Credit Union officials reported that an unidentifiable group of cybercriminals instigated a computer system shutdown, rendering members unable to access their accounts on the financial institution’s website since Friday afternoon. Brian Orenstein, the President and CEO of the Waterford-based credit union, revealed on Monday that Charter Oak is uncertain about the timeline …

Charter Oak Federal Credit Union Faces Cybersecurity Challenge: Online Services Temporarily Disrupted Read More »

Cash Website Recovers After Cyberattack, Security Enhancements Underway

Anyone who tried to access the Cash website since Saturday morning likely encountered problems. The reason for this is that Cash. fell victim to a hacker attack. In recent months, other media outlets like “Rheinische Post” and “Handelsblatt” have also been victims of similar or related attacks. Hackers targeted the servers of the Cash. Media …

Cash Website Recovers After Cyberattack, Security Enhancements Underway Read More »

Scammers Alter Phone Numbers in Google Search Results, Targeting Airline Customers

Recently, scammers made alterations to the contact information displayed in Google search results for several major airlines, leading some unsuspecting customers to dial a number where the person on the other end attempted to defraud them. Shmuli Evers, a software designer based in Brooklyn, New York, first noticed this issue on a Sunday when his …

Scammers Alter Phone Numbers in Google Search Results, Targeting Airline Customers Read More »

RDStealer: Unmasking a New Cyber Espionage Threat Exploiting Remote Desktop Protocols

Mobile employees provide attackers with new attack surfaces. They increasingly initiate attacks to establish command-and-control communications. This is demonstrated by a recent cyber espionage campaign. Bitdefender Labs is observing a new attack, RDStealer, for the first time, which abuses remote connections via the Remote Desktop Protocol (RDP). The hackers’ goal is to compromise access credentials …

RDStealer: Unmasking a New Cyber Espionage Threat Exploiting Remote Desktop Protocols Read More »

Android VPN Data Leak Concerns: Mullvad Exposes Privacy Risks and Google’s Response

Mullvad, a VPN provider focused on security and privacy, has identified a potential data leakage issue on Android devices while they are connected to VPN services. This issue cannot be mitigated. According to Mullvad’s findings, Android conducts connectivity checks outside the VPN tunnel when devices connect to wireless networks. What exacerbates this situation is that …

Android VPN Data Leak Concerns: Mullvad Exposes Privacy Risks and Google’s Response Read More »

Remote code execution in the agent guided by the OpenSSH SSH agent

The Qualys Threat Research Unit (TRU) has identified a critical remote code execution vulnerability in OpenSSH’s forwarded ssh-agent. This flaw could potentially allow remote attackers to execute arbitrary commands on vulnerable instances of OpenSSH’s forwarded ssh-agent. Given the widespread usage of OpenSSH’s forwarded ssh-agent, the Qualys Research Unit strongly advises security teams to prioritize the …

Remote code execution in the agent guided by the OpenSSH SSH agent Read More »

Scroll to Top