Thousands of Qlik Sense Servers Open to Cactus Ransomware
The business intelligence servers contain vulnerabilities that Qlik patched last year, but which Cactus actors have been exploiting since November.…
Intel Harnesses Hackathons to Tackle Hardware Vulnerabilities
The semiconductor manufacturing giant's security team describes how hardware hackathons, such as Hack@DAC, have helped chip security by finding and…
Fake job interviews target developers with new Python backdoor
A new campaign tracked as "Dev Popper" is targeting software developers with fake job interviews in an attempt to trick…
Enhancing Cybersecurity Defenses: The role of Voice Cloning in Penetration Testing
By Alex Serdiuk, CEO, Respeecher Newer and more impactful technological advancements are making the quest for foolproof cybersecurity measures more…
Over 1,400 CrushFTP servers vulnerable to actively exploited bug
Over 1,400 CrushFTP servers exposed online were found vulnerable to attacks currently targeting a critical severity server-side template injection (SSTI) vulnerability…
New Brokewell malware takes over Android devices, steals data
Security researchers have discovered a new Android banking trojan they named Brokewell that can capture every event on the device,…
ToddyCat APT Is Stealing Data on ‘Industrial Scale’
The threat actor is deploying multiple connections into victim environments to maintain persistence and steal data.
CrushFTP warns users to patch exploited zero-day “immediately”
CrushFTP warned customers today in a private memo of an actively exploited zero-day vulnerability fixed in new versions released today,…
Dangerous ICS Malware Targets Orgs in Russia and Ukraine
"Kapeka" and "Fuxnet" are the latest examples of malware to emerge from the long-standing conflict between the two countries.
CISA’s Malware Analysis Platform Could Foster Better Threat Intel
But just how the government differentiates its platform from similar private-sector options remains to be seen.