Tag: Vulnerabilities

A new method of creating persistent backdoor accounts on Kubernetes clusters for Monero crypto-mining has been discovered by Aqua Security’s research team.

Google has fixed a Cloud Platform (GCP) security flaw that could allow hackers to backdoor user accounts through malicious OAuth applications.

The updates address several vulnerabilities that could be exploited by a remote attacker to take control of an affected system.

Drupal, has issued a security advisory SA-CORE-2023-005 to fix an access bypass vulnerability that impacts multiple versions of the software.

Secureworks has identified the Bumblebee malware, which is spreading via fake online advertisements for popular programs such as ChatGPT, Zoom, and Citrix.

The Cybersecurity and Infrastructure Security Agency (CISA) has released a new report on an infostealer called ICONICSTEALER.

VMware, a leading cloud computing and virtualization technology company, has addressed a critical security vulnerability in its vRealize Log Insight product.

The malware is confirmed to exploit privilege escalation vulnerabilities, which are believed to be due to the high privileges required by Trigona.

Google’s Threat Analysis Group (TAG) has identified large-volume phishing campaigns targeting Ukrainian users and aimed at gathering intelligence.

Microsoft has released a security update to address vulnerabilities in the Microsoft Edge Stable Channel. The update is intended to address CVE-2023-2136.