Atlassian bug exploited in cryptocurrency mining campaign

September 23, 2022

Trend Micro researchers warn of an ongoing crypto mining campaign targeting Atlassian Confluence servers affected by the CVE-2022-26134 vulnerability.

Python bug potentially impacts over 350,000 projects

September 23, 2022

More than 350,000 open source projects can be potentially affected by an unpatched Python vulnerability, tracked as CVE-2007-4559 (CVSS score: 6.8)

Over 39K unauthenticated Redis services targeted in cryptocurrency campaign

September 23, 2022

The researcher Victor Zhu detailed a Redis unauthorized access vulnerability that could be exploited to compromise Redis instances exposed online.

Hackers stealing GitHub accounts

September 23, 2022

GitHub is warning of an ongoing phishing campaign that started on September 16 and is targeting its users with emails ...

Microsoft 365 phishing attacks impersonate U.S. govt agencies

September 22, 2022

The lure in these phishing emails is a request for bids for lucrative government projects, taking them to clones of ...

Fake Zoom Sites Deploying Vidar Malware

September 22, 2022

Cyble Research and Intelligence Labs (CRIL) discovered multiple fake Zoom sites created to spread malware among Zoom users.

CISA and NSA Publish Joint Cybersecurity Advisory on Control System Defense

September 22, 2022

The advisory is intended to provide critical infrastructure owners and operators with an understanding of the tactics, techniques, and procedures (TTPs) ...

CISA Releases Three Industrial Control Systems Advisories

September 22, 2022

CISA has released three (3) Industrial Control Systems (ICS) advisories containing information about current security issues, vulnerabilities, and exploits