Tag: Vulnerabilities

According to ESET researchers, enterprise network equipment, such as routers, that have been discarded but not properly destroyed, can reveal corporate secrets.

Sucuri warns of a malicious campaign where threat actors are installing the abandoned Eval PHP plugin on compromised WordPress sites.

A new method of creating persistent backdoor accounts on Kubernetes clusters for Monero crypto-mining has been discovered by Aqua Security’s research team.

Google has fixed a Cloud Platform (GCP) security flaw that could allow hackers to backdoor user accounts through malicious OAuth applications.

The updates address several vulnerabilities that could be exploited by a remote attacker to take control of an affected system.

Drupal, has issued a security advisory SA-CORE-2023-005 to fix an access bypass vulnerability that impacts multiple versions of the software.

Secureworks has identified the Bumblebee malware, which is spreading via fake online advertisements for popular programs such as ChatGPT, Zoom, and Citrix.

The Cybersecurity and Infrastructure Security Agency (CISA) has released a new report on an infostealer called ICONICSTEALER.

VMware, a leading cloud computing and virtualization technology company, has addressed a critical security vulnerability in its vRealize Log Insight product.

The malware is confirmed to exploit privilege escalation vulnerabilities, which are believed to be due to the high privileges required by Trigona.