Exploits

CISA D-Link Router Vulnerabilities Being Actively Exploited

| | cisa, Cybersecurity, Cybersecurity News, D-Link, Exploits, Information Security, IoT Security, Ivanti EPMM, network defense, Network Security, patch management, router vulnerabilities, Vulnerability Management
On Thursday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two security vulnerabilities affecting D-Link routers to its CISA Known Exploited Vulnerabilities (KEV) catalog due to confirmed active exploitation. Federal agencies ...
TuxCare
New Tracker Warning Features on iPhones & Androids!

New Tracker Warning Features on iPhones & Androids, 2024 Verizon Data Breach Investigations Report

| | AI, AI Hype, AirTag, Android 6, Apple, bluetooth, Cyber Security, Cybersecurity, Data breaches, Data Privacy, Digital Privacy, Episodes, Exploits, google, Information Security, Infosec, ios, Malware, Phishing, Podcast, Podcasts, Privacy, Secret Trackers, security, social engineering, Stalking, technology, trackers, verizon, Verizon DBIR, Vulnerabilities, Weekly Edition
In episode 330 Tom, Scott, and Kevin discuss the new features for iPhones and Android phones designed to warn users about secret trackers, possibly aiding in identifying stalkers. The hosts discuss Apple ...
Shared Security Podcast
Boeing Citrix Bleed Exploitation

LockBit Ransomware Affiliates Leverage Citrix Bleed Vulnerability (CVE-2023-4966)

| | Exploits, Ransomware
Citrix Bleed is being leveraged by LockBit ransomware affiliates to compromise organizations using CVE-2023-4966 ...
BlackFog
triada malware

Impact of Badbox and Peachpit Malware on Android Devices

| | Exploits
Explores the Badbox and Peachpit malware on Android devices and home networks which granted illegitimate users backdoor access ...
BlackFog

RunC Flaw Exploits: Prevent Hackers From Gaining Host Access

| | Cybersecurity News, Exploits, Hackers, RunC Flaw Exploits
In recent developments, security researchers have unveiled a series of high-severity vulnerabilities, collectively named ‘Leaky Vessels,’ or the RunC flaw exploits impacting key container infrastructure components such as Docker and runC. These ...
TuxCare
Polycrypt Crypter Static

PolyCrypt Runtime Crypter Being Sold On Cybercrime Forums

| | Exploits
We discuss the use of crypters and more specifically Polycrypt and how it can be used to evade detection and infect victims ...
BlackFog

New iPhone Exploit Uses Four Zero-Days

| | backdoors, Exploits, iPhone, kaspersky, Uncategorized, zero-day
Kaspersky researchers are detailing “an attack that over four years backdoored dozens if not thousands of iPhones, many of which belonged to employees of Moscow-based security firm Kaspersky.” It’s a zero-click exploit ...
Schneier on Security

Shield Your Device: Mitigating Bluetooth Vulnerability Risks

| | Android vulnerability, authentication bypass, Bluetooth Exploits Update, Bluetooth Protocol, Bluetooth vulnerability, Cross-Platform Security Flaw, CVE-2023-45866, Cyber Threats, Cybersecurity, Cybersecurity News, cybersecurity threats, Device Communication, Device Security, Digital Threats, Exploits, iOS Vulnerability, IoT Security, Linux vulnerability, macOS vulnerability, Physical Security, Proactive Security, security measures, software-patches, Viakoo Labs, Vulnerability Risks Mitigation
In the ever-evolving landscape of cybersecurity, a significant Bluetooth security flaw has emerged, posing a threat to devices operating on Android, Linux, macOS, and iOS. Tracked as CVE-2023-45866, this flaw allows threat ...
TuxCare

CACTUS Qlik Ransomware: Vulnerabilities Exploited

| | Analytics Software, Arctic Wolf, BI Systems, BITS, CACTUS Qlik Ransomware, CVEs, Cyberattack Campaign, Cybersecurity, Cybersecurity News, Data Visualization, Double Extortion, Exploits, HTTP Tunneling, Incident Response, ManageEngine UMES, patching, path traversal, powershell, Qlik Sense, ransomware tactics, Rclone, RDP, Remote Code Execution, Security Vulnerabilities, Sophos Endpoint Security, threat actors, VPN Appliance Flaws, WizTree
A cyberattack campaign dubbed the CACTUS Qlik Ransomware has become prominent in ransomware attacks on BI systems. Researchers have warned of threat actors exploiting three Qlik security vulnerabilities to target different organizations ...
TuxCare

New Windows/Linux Firmware Attack

| | BIOS, Exploits, firmware, Linux, Uncategorized, Vulnerabilities, Windows
Interesting attack based on malicious pre-OS logo images: LogoFAIL is a constellation of two dozen newly discovered vulnerabilities that have lurked for years, if not decades, in Unified Extensible Firmware Interfaces responsible ...
Schneier on Security
Load more