Emphasizing the Importance of Continuous Vulnerability Scanning in the Digital Age Main Points: The time between a vulnerability being discovered and being exploited by hackers is significantly short (only 12 days). Continuous vulnerability scanning has become increasingly important for organizations who are aware of this fact. The infrequent, one-off scans can leave organizations exposed and
Read More
The Slick Moves of the OilRig Threat Actor – The OilRig threat actor, known to have links with Iran, targeted an undisclosed Middle Eastern government in a campaign that lasted from February to September 2023. – The campaign saw the theft of files and passwords, with one incident even deploying a PowerShell Backdoor aptly named
Read More
# North Korean Threat Actors Exploit JetBrains Security Flaw: How Secure is Your Server? ## Overview – North Korean threat actors are exploiting a severe security flaw in JetBrains TeamCity. – The exploitation is linked to Diamond Sleet and Onyx Sleet groups. – Microsoft warns of potential breaches to vulnerable servers. ## Details on the
Read More
State-backed Threats Sauntering Sneakily through WinRAR Exploit State-backed threat actors from Russia and China exploiting a security flaw in the WinRAR Archiver tool for Windows. The vulnerability is numbered CVE-2023-38831 (CVSS score: 7.8). This flaw allows attackers to execute arbitrary code when a user tries to view a benign file in a ZIP archive. Vulnerability
Read More
Operation Dream Job: Advanced Trojan Attack Traced to Lazarus Group – The North Korea-linked Lazarus Group is using trojanized versions of Virtual Network Computing (VNC) apps to target the defense industry and nuclear engineers. – The group tricks job seekers on social media into opening malicious apps for fake job interviews, an operation known as
Read More
Citrix Sounds Alarm Bell Over Critical Security Flaw in NetScaler Appliances Main Points to Know Citrix has made a public announcement warning about the exploitation of a recent critical security flaw in its NetScaler ADC and Gateway appliances. The issue has been formally listed as CVE-2023-4966, boasting a high CVSS score of 9.4. This vulnerability
Read More
Jupyter’s New Gamer: SolarSystem Cousins Meet Qubitstrike Main Points: A suspected Tunisian threat actor initiates a new campaign targeting exposed Jupyter Notebooks The goal is two-pronged: to illicitly mine cryptocurrency and infiltrate cloud environments The operation, termed Qubitstrike by Cado, uses the Telegram API after a successful compromise Qubitstrike’s payloads – like unwanted alien luggage,
Read More
Combining Vulnerabilities: Cyber attackers New Strategy • Cyber attackers are always looking for vulnerabilities within organizational environments. • They search for combinations of exposures and attack methods. • Despite various security tools, organizations often face with two main issues: weak detection of sophisticated threats and lack of context in alerts. Persistent Threats: A Hacker’s Lingo
Read More
Main points: – The Asia-Pacific (APAC) region government entities are being targeted by a long-term cyber espionage campaign named TetrisPhantom. – The attacker illicitly watched and gathered sensitive data from APAC government entities by exploiting a certain kind of secure USB drive. – The USB drive used is protected by hardware encryption to ensure the
Read More
Synology’s DiskStation Manager Prone to Medium Severity Flaw Synopsis A medium-severity flaw identified in Synology’s DiskStation Manager (DSM). This vulnerability allows potential for decoding the password of an admin. Under certain conditions, hackers can reconstruct the admin password for remote takeover. Detailed Analysis Akin to a hole in your favorite pair of jeans – invisible
Read MoreNo products in the cart.