State-backed Threats Sauntering Sneakily through WinRAR Exploit State-backed threat actors from Russia and China exploiting a security flaw in the WinRAR Archiver tool for Windows. The vulnerability is numbered CVE-2023-38831 (CVSS score: 7.8). This flaw allows attackers to execute arbitrary code when a user tries to view a benign file in a ZIP archive. Vulnerability
Read More
Operation Dream Job: Advanced Trojan Attack Traced to Lazarus Group – The North Korea-linked Lazarus Group is using trojanized versions of Virtual Network Computing (VNC) apps to target the defense industry and nuclear engineers. – The group tricks job seekers on social media into opening malicious apps for fake job interviews, an operation known as
Read More
Citrix Sounds Alarm Bell Over Critical Security Flaw in NetScaler Appliances Main Points to Know Citrix has made a public announcement warning about the exploitation of a recent critical security flaw in its NetScaler ADC and Gateway appliances. The issue has been formally listed as CVE-2023-4966, boasting a high CVSS score of 9.4. This vulnerability
Read More
Jupyter’s New Gamer: SolarSystem Cousins Meet Qubitstrike Main Points: A suspected Tunisian threat actor initiates a new campaign targeting exposed Jupyter Notebooks The goal is two-pronged: to illicitly mine cryptocurrency and infiltrate cloud environments The operation, termed Qubitstrike by Cado, uses the Telegram API after a successful compromise Qubitstrike’s payloads – like unwanted alien luggage,
Read More
Combining Vulnerabilities: Cyber attackers New Strategy • Cyber attackers are always looking for vulnerabilities within organizational environments. • They search for combinations of exposures and attack methods. • Despite various security tools, organizations often face with two main issues: weak detection of sophisticated threats and lack of context in alerts. Persistent Threats: A Hacker’s Lingo
Read More
Main points: – The Asia-Pacific (APAC) region government entities are being targeted by a long-term cyber espionage campaign named TetrisPhantom. – The attacker illicitly watched and gathered sensitive data from APAC government entities by exploiting a certain kind of secure USB drive. – The USB drive used is protected by hardware encryption to ensure the
Read More
Synology’s DiskStation Manager Prone to Medium Severity Flaw Synopsis A medium-severity flaw identified in Synology’s DiskStation Manager (DSM). This vulnerability allows potential for decoding the password of an admin. Under certain conditions, hackers can reconstruct the admin password for remote takeover. Detailed Analysis Akin to a hole in your favorite pair of jeans – invisible
Read More
Main Points: – Taiwanese networking equipment manufacturer D-Link confirmed a data breach – The breach led to the exposure of “low sensitivity and semi-public” information – Data did not originate from the cloud but likely from an old D-View 6 system – D-View 6 system reached its end of life as early as 2015 –
Read More
Critical Security Flaws in CasaOS Open-Source Personal Cloud Software Two critical security flaws have been discovered in the open-source CasaOS personal cloud software. These flaws could be leveraged by attackers for arbitrary code execution and to potentially take over vulnerable systems. The identified vulnerabilities are tracked as CVE-2023-37265 and CVE-2023-37266, with both assigned a CVSS
Read More
Swabbing the Cyber Decks: The Importance of Protecting Financial Data • Financial data is not just a collection of numbers but a crucial business asset and a prime target for cybercriminals. • A security breach can jeopardize customers’ personal information. • Breaches enable fraudsters to drain company funds and exploit clients. Financial Data: The Pirate’s
Read MoreNo products in the cart.