Recent cybersecurity investigations have unveiled significant insights into the functioning of a notorious malware family known as SystemBC. This malware operates through a command-and-control (C2) server setup that has been analyzed by researchers at Kroll, revealing its availability for purchase on various underground marketplaces. Kroll’s analysis indicates that purchasers receive…
A major phishing campaign has recently been identified, targeting businesses worldwide and successfully circumventing Microsoft Office 365’s Advanced Threat Protection (ATP). This offensive has reportedly led to the credentials of over a thousand corporate employees being compromised, with origins traced back to August of the previous year. According to a…
Cisco Addresses Critical Security Flaw in Secure Client Software Cisco has recently issued patches to rectify a significant vulnerability in its Secure Client software, which poses a considerable risk of exploitation by malicious actors. This flaw allows intruders to initiate a VPN session impersonating a targeted user, potentially compromising sensitive…
A newly identified Linux variant of a multi-platform backdoor known as DinodasRAT has emerged, actively targeting regions including China, Taiwan, Turkey, and Uzbekistan, according to recent findings by Kaspersky. DinodasRAT, also recognized as XDealer, is a C++-based malware specifically designed to extract various sensitive data from compromised systems. This variant…
Recent reports have unveiled a significant vulnerability concerning the “wall” command within the util-linux package, which presents risks for users across various Linux distributions. This flaw has the potential to be exploited by a malicious actor to either leak user passwords or manipulate the clipboard. The vulnerability, identified as CVE-2024-28085…
Significant Supply Chain Attack Discovered in XZ Utils, Posing Serious Risks to Linux Users A profound security threat has emerged following the discovery of malicious code inserted into XZ Utils, an open-source library used extensively in numerous major Linux distributions. This vulnerability, identified as CVE-2024-3094 and given a critical CVSS…
Recent research has uncovered a security glitch in Zoom’s screen sharing feature that could inadvertently expose sensitive information to participants during video calls. This vulnerability, designated as CVE-2021-28133, is notable as it remains unpatched, enabling the possibility of revealing contents from applications not actively being shared, albeit for only brief…
A set of serious security vulnerabilities has emerged in the OpenPrinting Common Unix Printing System (CUPS), potentially allowing for remote command execution on Linux systems under specific circumstances. Security researcher Simone Margaritelli detailed that an unauthenticated remote attacker could exploit these vulnerabilities to alter or install printer IPP URLs, which…
Recent developments have emerged concerning a Python-based “self-replicating, polymorphic bot” known as Necro. These upgrades appear designed to enhance its ability to infiltrate vulnerable systems and evade detection. Initially reported earlier this year, the bot now showcases significant modifications, including various command-and-control (C2) communication techniques and the addition of new…
