threat actors
LayerSlider Plugin Flaw Exposes 1M Sites To SQL Injections
Wajahat Raja | | CVE-2024-2879, Cybersecurity, Cybersecurity News, Data breach, exploitation, LayerSlider Plugin, patch management, security flaw, sql injection, threat actors, vulnerability, vulnerability assessment, Website Protection, Website Security, wordpress security
Recent media reports have revealed a crucial LayerSlider plugin flaw. According to these reports, this flaw has exposed numerous WordPress sites to SQL attacks and infections. If exploited, the flaw allows users ...
CISA SharePoint Vulnerability Warning: RCE Flaw Exploited
Wajahat Raja | | Attack sequence, Authentication protocols, cisa, Common Vulnerability Scoring System (CVSS), CVE-2023-24955, Cyber Threats, Cybersecurity Measures, Cybersecurity News, Cybersecurity updates, federal agencies, Known Exploited Vulnerabilities (KEV), Microsoft, Network Security, patch management, Proactive defense, Remote Code Execution (RCE), Security Strategies, sharepoint, threat actors, Vulnerability warning
In light of recent cyber threats, a CISA SharePoint vulnerability warning has been issued. According to media reports, threat actors are exploiting the remote code execution flaw to launch arbitrary code, which ...
Evasive Panda Cyber Attacks: Threat Actor Targets Tibetans
Wajahat Raja | | Advanced persistent threat (APT), China-linked Hackers, cyber attacks, Cyber Espionage, Cybersecurity, Cybersecurity News, ESET, Evasive Panda, malicious code, Malware Tactics, MgBot, Monlam Festival, Nightdoor Backdoor, Supply Chain Attacks, threat actors, Tibetans, watering hole attacks
Cybersecurity experts at ESET have come across a malicious campaign that targets Tibetans in many countries by leveraging the website of a religious gathering. Evasive Panda cyber attacks are associated with a ...
Python Snake Info Stealer Spreading Via Facebook Messages
Wajahat Raja | | credential theft, cyber attacks, cyber defense, cyber threat intelligence, Cyber threat landscape, Cybereason, Cybersecurity, Cybersecurity Measures, Cybersecurity News, Data breaches, Facebook Messages, GitLab, Information Stealing, Malicious Scripts, Malware, Proactive Security, PyInstaller, Python Snake Info Stealer, threat actors, Web Browsers
As per recent reports, threat actors are increasingly leveraging Facebook messages to distribute the Python Snake Info Stealer malware. Researchers have noticed that threat actors are using three variants of the information ...
Cisco VPN Hijacking Flaw In Secure Client Software Patched
Wajahat Raja | | Cisco solutions, Cisco VPN hijacking flaw, CVE-2024-20337, CVE-2024-20338, Cyber threat landscape, Cybersecurity, Cybersecurity News, Cybersecurity Strategy, Endpoint Protection, Network vulnerabilities, patch management, Secure Client software, security patches, threat actors, VPN security, Zero-Trust Network Architecture (ZTNA)
In light of recent events, Cisco has released patches for two high-severity network vulnerabilities in its Secure Client. As per recent reports, vulnerabilities leading to the Cisco VPN hijacking flaw are being ...
SMTP Smuggling: Hackers Exploit New Flaw For Spoof Emails
Wajahat Raja | | Authentication protocols, Cisco Vulnerabilities, Cyber Threats, Cybersecurity, Cybersecurity News, cybersecurity risks, dkim, dmarc, Email Communication, Email Exploitation, email security, Email Security Best Practices, Email spoofing, GMX Vulnerabilities, Industry Response, Microsoft vulnerabilities, postfix, Sendmail, Simple Mail Transfer Protocol, SMTP Protocol Vulnerabilities, SMTP Smuggling, spf, threat actors
In the ever-evolving landscape of cyber threats via email, a novel exploitation technique has emerged – Simple Mail Transfer Protocol – SMTP smuggling. This method, when wielded by threat actors, poses a ...
Alert: New DLL Variant Used For Malicious Code Execution
Wajahat Raja | | attack prevention, code execution, Cybersecurity, Cybersecurity News, dll, Malware, Mitigation Strategies, Network Security, parent process analysis, Privilege Escalation, proof of concept, search order hijacking, system hardening, threat actors, Windows 10, Windows 11, WinSxS folder
Recent research findings have brought to light a new DLL variant pertaining to search order hijacking techniques. As per recent reports, this dynamic link library variant could potentially be used by threat ...
JavaScript Malware: 50,000+ Bank Users at Risk Worldwide
Wajahat Raja | | Banking Security, Cyber threat landscape, Cybersecurity News, DanaBot Family, Europol IOCTA, Financial Data Breach, IBM Security Trusteer, JavaScript Malware Cybersecurity Threats, Malicious Campaign, threat actors
In a disconcerting revelation, a newly identified strain of JavaScript malware has set its sights on compromising online banking accounts, orchestrating a widespread campaign impacting over 40 financial institutions globally. This insidious ...
Kyivstar Cyber Attack: Ukraine Telecom Operator Paralyzed
Wajahat Raja | | air raid alert systems, Cyber-attack, Cybersecurity Incident, Cybersecurity News, DDoS attack, Impact, infrastructure damage, internet outages, Kyivstar, Monobank, network providers, network shutdown, PrivatBank, Russia, Russian origins, telecom operator, threat actors, Ukrainian threat actors, Ukrtelecom, VEON, Vodafone
Ukraine’s largest telecom operator, Kyivstar, was recently shut down after falling prey to a cyberattack. The Kyivstar cyber attack left millions of Ukrainians without access to cellular or internet services. Recent reports ...
Ledger Supply Chain Breach: $600,000 Theft Unveiled
Wajahat Raja | | countermeasures, crypto drainer malware, cryptocurrency theft, cybercrime, Cybersecurity News, hardware wallet, ledger, Ledger Connect Kit, Legal Action, NPM account, phishing attack, Proactive Cybersecurity, rogue project, safeguarding cryptocurrency assets, security measures, software wallet, supply chain attack, supply chain breach, technical details, threat actors, unauthorized transactions, virtual assets, WalletConnect
Recent events have brought to light the Ledger supply chain breach, a cybercrime incident that led to the theft of $600,000 in virtual assets. For those who don’t know, Ledger is a ...