FIN8 Revamped Hacking Toolkit with New Stealthy Attack Features
Syssphinx (aka FIN8) is a financially motivated cyber-crime group deploying revamped sardonic backdoor to deliver Noberus ransomware.This group has been active since January 2016, targeting...
OWASP Released Top 10 Critical Vulnerabilities for LLMs(AI models)
OWASP Foundation has released the 0.9.0 version of Critical Vulnerabilities in LLMs (Large Language Models).A groundbreaking initiative has emerged to address the pressing need...
Hackers Actively Exploit Multiple Adobe ColdFusion Vulnerabilities
On July 11, Adobe coordinated with the vendor to fix several ColdFusion vulnerabilities, including CVE-2023-29298.But it's been reported that there are two ColdFusion vulnerabilities...
Dark Web Secrets: Mystery Behind the Anonymous World
Dark Web Secrets: Have you ever wondered about the mysterious parts of the internet? Welcome to the dark web.This uncharted digital territory, inaccessible...
Beware of Weaponized TeamViewer Installer that Delivers njRAT
Threat actors relying on legitimate, well-known software TeamViewer for exploitation has been a very common scenario.There have been several cases where threat actors...
Red Menshen APT Group Deploying BPFDoor in Linux Kernel
APTs Red Menshen expands targets to Linux and cloud servers, as seen in ransomware attacks on VMware ESXi, Mirai botnet variations, and cloud-focused stealers...
Rockwell Automation ControlLogix Flaws Expose ICS Devices to RCE & DoS Attacks
Rockwell Automation ControlLogix EtherNet/IP (ENIP) communication module models have two security issues that might be utilized to carry out remote code execution and cause a...
Re-released Apple WebKit Zero-Day Patch Fixes Website Breaking
Apple has recently released new Rapid Security Response (RSR) patches to fix a zero-day vulnerability. This vulnerability has been exploited in attacks and affects...
Malicious Chrome Extension Steals Businesses Ads Manager Login Details
Cybercriminals are using malicious Chrome extensions to steal Facebook login information in a recent operation.The reports shared by Malwarebytes Labs also stated that sponsored...
Jenkins Plugin Flaw Lets Attackers Gain Admin Access
A recent security advisory from Jenkins reported that they had fixed 24 vulnerabilities affecting multiple Jenkins plugins.This Flaw includes 5 High, 18 Medium,...