Latest Cybersecurity News and Articles


Veeam Backup & Replication Faces RCE Flaw Allows Full System Takeover

07 September 2024
A critical Remote Code Execution (RCE) flaw, CVE-2024-40711, with a CVSS score of 9. 8 has been discovered in Veeam Backup & Replication, allowing unauthorized attackers to take full control over systems.

Apache fixes critical OFBiz remote code execution vulnerability

07 September 2024
Apache has addressed a critical remote code execution vulnerability in its OFBiz software, which could allow attackers to run malicious code on Linux and Windows servers. OFBiz is a CRM and ERP suite that serves as a Java-based web framework.

Fog Ransomware Now Targeting the Financial Sector

07 September 2024
Fog, a variant of STOP/DJVU family, targets various sectors, exploiting VPN vulnerabilities to infiltrate network defenses. After infiltration, Fog ransomware disables protective measures, encrypts vital files, and demands ransom via the Tor network.

North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job Scams

07 September 2024
Threat actors affiliated with North Korea have been observed leveraging LinkedIn as a way to target developers as part of a fake job recruiting operation. These attacks employ coding tests as a common initial infection vector, Google-owned Mandiant said in a new report about threats faced by the Web3 sector. "After an initial chat conversation, the attacker sent a ZIP file that contained

FBI Cracks Down on Dark Web Marketplace Managed by Russian and Kazakh Nationals

07 September 2024
Two men have been indicted in the U.S. for their alleged involvement in managing a dark web marketplace called WWH Club that specializes in the sale of sensitive personal and financial information. Alex Khodyrev, a 35-year-old Kazakhstan national, and Pavel Kublitskii, a 37-year-old Russian national, have been charged with conspiracy to commit access device fraud and conspiracy to commit wire

New Stealthy Malware Campaign Dubbed DarkCracks Exploits GLPI and WordPress Sites

07 September 2024
DarkCracks isn’t your typical malware campaign—it’s a sophisticated Launcher designed for long-term exploitation. It deploys malicious payloads through public websites, like school portals and booking systems, to infect unsuspecting users.

Penpie DeFi platform files reports with FBI, Singapore police after $27 million crypto theft

07 September 2024
The Penpie DeFi platform recently reported a $27 million cryptocurrency theft to the FBI and Singapore police. Hackers targeted the protocol, stealing ethereum and prompting Penpie to halt withdrawals and deposits.

CyberVolk Ransomware: A New and Evolving Threat to Global Cybersecurity

07 September 2024
CyberVolk, infamous for DDoS attacks and data breaches, has gained particular notoriety for its ransomware, detected in July 2024, due to its advanced features and capabilities.

Security leaders respond to the White House's internet routing guide

06 September 2024
The White House Office of the National Cyber Director has released a guide to improve the security of the Border Gateway Protocol, and security leaders are sharing their thoughts.

SonicWall Urges Users to Patch Critical Firewall Flaw Amid Possible Exploitation

06 September 2024
SonicWall has revealed that a recently patched critical security flaw impacting SonicOS may have come under active exploitation, making it essential that users apply the patches as soon as possible. The vulnerability, tracked as CVE-2024-40766, carries a CVSS score of 9.3 out of a maximum of 10. "An improper access control vulnerability has been identified in the SonicWall SonicOS management

GeoServer Vulnerability Targeted by Hackers to Deliver Backdoors and Botnet Malware

06 September 2024
A recently disclosed security flaw in OSGeo GeoServer GeoTools has been exploited as part of multiple campaigns to deliver cryptocurrency miners, botnet malware such as Condi and JenX, and a known backdoor called SideWalk. The security vulnerability is a critical remote code execution bug (CVE-2024-36401, CVSS score: 9.8) that could allow malicious actors to take over susceptible instances. In

GitHub Actions Vulnerable to Typosquatting, Exposing Developers to Hidden Malicious Code

06 September 2024
Threat actors have long leveraged typosquatting as a means to trick unsuspecting users into visiting malicious websites or downloading booby-trapped software and packages. These attacks typically involve registering domains or packages with names slightly altered from their legitimate counterparts (e.g., goog1e.com vs. google.com). Adversaries targeting open-source repositories across

New Android SpyAgent Campaign Steals Crypto Credentials via Image Recognition

06 September 2024
A new mobile malware called SpyAgent has been uncovered by McAfee's Mobile Research Team. This malware targets mnemonic keys used for cryptocurrency wallets by scanning for images containing them on your device.

OpenStack Ironic Users Urged to Patch Critical Vulnerability

06 September 2024
The flaw, discovered by security researchers at Red Hat and G-Research, could lead to unauthorized access to sensitive data through mishandled images processed by qemu-img.

Sami Khoury, Head of Canada’s Cyber Agency, Starts New Role in Government

06 September 2024
Sami Khoury, the head of Canada's cyber agency, is moving to a new role as the government's senior official for cybersecurity after leading the Canadian Centre for Cyber Security (CCCS) since August 2021.

Report: 83% of Organizations Experienced at Least One Ransomware Attack in the Last Year

06 September 2024
According to Onapsis, 83% of organizations experienced a ransomware attack in the past year. Of those, 46% experienced four or more attacks, and 14% faced 10 or more. The attacks resulted in at least 24 hours of downtime for 61% of respondents.

MuddyWater Hijacks RMM Software for Espionage

06 September 2024
MuddyWater, an Iranian hacker group since 2017, has been using legitimate RMM software to target organizations globally, focusing on government, military, telecom, and oil sectors.

Critical Foreman Flaw Exposes Red Hat Satellite to Unauthorized Access

06 September 2024
This authentication bypass flaw, with a CVSS score of 9.8 (the highest severity rating), could enable unauthorized users to gain administrative access to Red Hat Satellite, a commercial offering built on Foreman.

Hackers Linked to Russia and Belarus Increasingly Target Latvian Websites, Officials Say

06 September 2024
Hackers from Russia and Belarus are increasingly targeting Latvian government and critical infrastructure websites in politically motivated cyberattacks, according to Latvian cybersecurity officials.

US Posts Indictments, Rewards in Russia’s WhisperGate Hacks Against Ukraine

06 September 2024
The US has indicted members of Russian military intelligence unit 29155 for cyber-operations including WhisperGate hacks against Ukraine, offering up to $10 million for information.