Category: Information Security
Security researcher Matei “Mal” Badanoiu disclosed the proof-of-concept (PoC) of a patched vulnerability that was tracked as CVE-2023-34468 and has been found to impact Apache NiFi. Assigned a CVSS score of 8.8, the flaw...
Apache DolphinScheduler is a popular open-source workflow management platform that is widely used by enterprises to orchestrate and manage complex data processing pipelines. Recently, a critical vulnerability, CVE-2023-48796, was discovered in Apache DolphinScheduler that...
Trend Micro has uncovered a malicious Chrome extension named ParaSiteSnatcher, primarily targeting users in Latin America, specifically in Brazil. This extension empowers malefactors to track, manipulate, and purloin sensitive information from various sources, encompassing financial...
Recently, Cisco’s Talos intelligence group unveiled critical vulnerabilities in Adobe Acrobat Reader, a widely used PDF tool. These vulnerabilities, if exploited, could lead to arbitrary code execution, compromising the security and privacy of millions...
In the ever-evolving landscape of cyber threats, a new menace has emerged, capturing the attention of IBM X-Force researchers: the WailingCrab malware. Also known as WikiLoader, this multi-component malware has been evolving, especially in...
In the shadowy realm of cybersecurity, new threats emerge with alarming frequency, preying on unsuspecting users and jeopardizing their digital assets. Cyble Research and Intelligence Labs (CRIL) recently unearthed a disturbing discovery – a...
In the ever-evolving landscape of cybersecurity threats, ransomware remains a persistent and formidable adversary. Recently, Qualys Threat Research uncovered a cunning tactic employed by the Phobos ransomware family. This malicious software, known for its...
According to recent data from cybersecurity firm Akamai, researchers have uncovered a new botnet, based on the infamous Mirai malware, named “InfectedSlurs”. This malicious infrastructure employs two zero-day vulnerabilities, effortlessly infecting routers and digital...
North Korean hackers infiltrated Taiwanese company CyberLink, a renowned multimedia software producer. The malefactors embedded malicious code into one of CyberLink’s installers distributed through official update channels. This breach led to the infection of...
ownCloud, a popular open-source file sync and share solution, has been found to harbor three critical vulnerabilities that could expose sensitive user data and compromise system security. These vulnerabilities tracked as CVE-2023-49103, CVE-2023-49104, and...
strongSwan, a widely used open-source implementation of IPsec (Internet Key Exchange Protocol), has been found to harbor a critical buffer overflow vulnerability (CVE-2023-41913) that could potentially lead to remote code execution. This vulnerability affects...
The latest research by Check Point has unveiled significant shifts in the cyber threat landscape, where experts have observed a marked increase in ransomware attacks targeting Linux systems, particularly ESXi, compared to the traditionally...