Microsoft Issues Fixes for 84 Vulnerabilities: Here’s What to Patch Now
July's security update included fixes for one actively exploited flaw, more than 30 bugs in Azure Site Recovery, and four…
New 0mega ransomware targets businesses in double-extortion attacks
A new ransomware operation named '0mega' targets organizations worldwide in double-extortion attacks and demands millions of dollars in ransoms. [...]
Zoho ManageEngine ADAudit Plus bug gets public RCE exploit
Security researchers have published technical details and proof-of-concept exploit code for CVE-2022-28219, a critical vulnerability in the Zoho ManageEngine ADAudit…
ZuoRAT Hijacks SOHO Routers From Cisco, Netgear
The malware has been in circulation since 2020, with sophisticated, advanced malicious actors taking advantage of the vulnerabilities in SOHO…
PyPi python packages caught sending stolen AWS keys to unsecured sites
Multiple malicious Python packages available on the PyPI repository were caught stealing sensitive information like AWS credentials and transmitting it…
Sophos Firewall zero-day bug exploited weeks before fix
Chinese hackers used a zero-day exploit for a critical-severity vulnerability in Sophos Firewall to compromise a company and breach cloud-hosted…
Hackers clone Coinbase, MetaMask mobile wallets to steal your crypto
Security researchers have uncovered a large-scale malicious operation that uses trojanized mobile cryptocurrency wallet applications for Coinbase, MetaMask, TokenPocket, and imToken services.…
Telegram to soon launch its premium plan at $4.99 per month
In addition to official advertisements in the messaging app, Telegram is also bringing a new premium subscription to the messaging…
Atlassian fixes Confluence zero-day widely exploited in attacks
Atlassian has released security updates to address a critical zero-day vulnerability in Confluence Server and Data Center actively exploited in the…
Actively Exploited Atlassian Zero-Day Bug Allows Full System Takeover
An remote code execution (RCE) vulnerability in all versions of the popular Confluence collaboration platform can be abused in credential…