Category vulnerabilities

Hackers Taking Advantage of MS Excel Vulnerability to Distribute Agent Tesla Malware

Recent cybersecurity threats have revealed that attackers are exploiting an aging vulnerability in Microsoft Office as a tactic within phishing campaigns. This method is being employed to disseminate a malware variant known as Agent Tesla. The infection vector often involves decoy Excel files, which are typically embedded in messages that…

Read MoreHackers Taking Advantage of MS Excel Vulnerability to Distribute Agent Tesla Malware

UAC-0099: Leveraging WinRAR Vulnerabilities to Attack Ukrainian Companies with LONEPAGE Malware

The threat actor identified as UAC-0099 has intensified its campaign targeting Ukraine, utilizing a critical vulnerability in the WinRAR software to distribute the malware variant known as LONEPAGE. This method highlights a significant shift in tactics, emphasizing the exploitation of existing software vulnerabilities to facilitate attacks. According to cybersecurity firm…

Read MoreUAC-0099: Leveraging WinRAR Vulnerabilities to Attack Ukrainian Companies with LONEPAGE Malware

Deceptive Microsoft Word Documents Used to Distribute Nim Malware

New Phishing Campaign Deploys Nim-Based Malware via Microsoft Word Documents A recently uncovered phishing campaign is exploiting Microsoft Word documents as bait to deliver backdoor malware written in the Nim programming language. This development poses significant challenges for cybersecurity experts, as malware created in less common languages can hinder research…

Read MoreDeceptive Microsoft Word Documents Used to Distribute Nim Malware

Chinese Hackers Take Advantage of New Zero-Day Vulnerability in Barracuda’s ESG Appliances

Barracuda Networks disclosed a serious cybersecurity incident involving a zero-day vulnerability within its Email Security Gateway (ESG) appliances, allegedly exploited by Chinese threat actors. This vulnerability has been designated as CVE-2023-7102 and has led to the deployment of backdoors on a select number of affected devices. The vulnerability involves an…

Read MoreChinese Hackers Take Advantage of New Zero-Day Vulnerability in Barracuda’s ESG Appliances

Urgent Zero-Day Vulnerability in Apache OfBiz ERP Poses Security Risk to Businesses

Zero-Day Vulnerability Discovered in Apache OfBiz ERP System A serious zero-day vulnerability has been identified in Apache OfBiz, an open-source Enterprise Resource Planning (ERP) system. This flaw poses significant risks as it could potentially allow attackers to bypass essential authentication safeguards. The vulnerability is classified as CVE-2023-51467, linked specifically to…

Read MoreUrgent Zero-Day Vulnerability in Apache OfBiz ERP Poses Security Risk to Businesses

New Terrapin Vulnerability Could Allow Attackers to Downgrade SSH Protocol Security

Recent research from Ruhr University Bochum has revealed a critical security vulnerability in the Secure Shell (SSH) protocol, which is widely used for secure communications over untrusted networks. The vulnerability, designated as Terrapin (CVE-2023-48795), exhibits a CVSS score of 5.9, signaling its potential significance in the cybersecurity landscape. This vulnerability…

Read MoreNew Terrapin Vulnerability Could Allow Attackers to Downgrade SSH Protocol Security

New DLL Search Order Hijacking Variant Bypasses Windows 10 and 11 Security Measures

A recent report has highlighted a newly identified variant of DLL (Dynamic Link Library) search order hijacking, a sophisticated technique that cybercriminals may exploit to bypass security measures and execute malicious code on systems utilizing Microsoft Windows 10 and Windows 11. This particular method has drawn concern due to its…

Read MoreNew DLL Search Order Hijacking Variant Bypasses Windows 10 and 11 Security Measures

Malware Exploiting Google MultiLogin to Sustain Access After Password Resets

A recent security report reveals that information-stealing malware is exploiting a previously undocumented Google OAuth endpoint known as MultiLogin. This vulnerability allows cybercriminals to hijack user sessions, granting them continuous access to Google services even after victims have conducted password resets. This revelation has raised significant concerns regarding user privacy…

Read MoreMalware Exploiting Google MultiLogin to Sustain Access After Password Resets

Urgent: Ivanti Issues Patch for Serious Vulnerability in Endpoint Manager Solution

Ivanti has disclosed critical security vulnerabilities within its Endpoint Manager (EPM) solution that pose severe risks to affected systems. This vulnerability, identified as CVE-2023-39336, has received a high-risk CVSS score of 9.6 out of 10, indicating its potential for abuse. The flaw affects both the EPM 2021 and EPM 2022…

Read MoreUrgent: Ivanti Issues Patch for Serious Vulnerability in Endpoint Manager Solution