Eswar

Eswar

New SSLoad Malware Combined With Tools Hijacking Entire Network DomainNew SSLoad Malware Combined With Tools Hijacking Entire Network Domain

New SSLoad Malware Combined With Tools Hijacking Entire Network Domain

A new attack campaign has been discovered to be employed by the FROZEN#SHADOW, which utilized SSLoad malware for its operations…

1 year ago
Multiple MySQL2 Flaw Let Attackers Arbitrary Code RemotelyMultiple MySQL2 Flaw Let Attackers Arbitrary Code Remotely

Multiple MySQL2 Flaw Let Attackers Arbitrary Code Remotely

The widely used MySQL2 has been discovered to have three critical vulnerabilities: remote Code execution, Arbitrary code injection, and Prototype…

1 year ago
CoralRaider Hacker Evade Antivirus Detections Using Malicious LNK FileCoralRaider Hacker Evade Antivirus Detections Using Malicious LNK File

CoralRaider Hacker Evade Antivirus Detections Using Malicious LNK File

This campaign is observed to be targeting multiple countries, including the U.S., Nigeria, Germany, Egypt, the U.K., Poland, the Philippines,…

1 year ago
PoC Exploit Released For Critical Oracle VirtualBox VulnerabilityPoC Exploit Released For Critical Oracle VirtualBox Vulnerability

PoC Exploit Released For Critical Oracle VirtualBox Vulnerability

Oracle Virtualbox was identified and reported as having a critical vulnerability associated with Privilege Escalation and Arbitrary File Move/Delete. This…

1 year ago
CrushFTP Servers Zero-day Under Active Attack: Update NowCrushFTP Servers Zero-day Under Active Attack: Update Now

CrushFTP Servers Zero-day Under Active Attack: Update Now

CrushFTP is a file transfer server that supports secure protocols, offers easier configuration, and offers powerful monitoring tools. It also…

1 year ago
Ex-Security Engineer Jailed For Hacking Decentralized Cryptocurrency ExchangesEx-Security Engineer Jailed For Hacking Decentralized Cryptocurrency Exchanges

Ex-Security Engineer Jailed For Hacking Decentralized Cryptocurrency Exchanges

Ahmed exploited a vulnerability in a decentralized cryptocurrency exchange's smart contract by injecting fabricated pricing data, which triggered the generation…

1 year ago
TA558 Hackers Compromised 320+ Organizations’ FTP & SMTP ServersTA558 Hackers Compromised 320+ Organizations’ FTP & SMTP Servers

TA558 Hackers Compromised 320+ Organizations’ FTP & SMTP Servers

TA558, a financially motivated threat actor identified in 2018, is targeting several countries but with utmost priority in Latin America.…

1 year ago
Microsoft .NET, .NET Framework, & Visual Studio Vulnerable To RCE AttacksMicrosoft .NET, .NET Framework, & Visual Studio Vulnerable To RCE Attacks

Microsoft .NET, .NET Framework, & Visual Studio Vulnerable To RCE Attacks

A new remote code execution vulnerability has been identified to be affecting multiple Microsoft products including .NET, .NET Framework and…

1 year ago
Critical Rust Vulnerability Let Hackers Inject Commands on Windows SystemsCritical Rust Vulnerability Let Hackers Inject Commands on Windows Systems

Critical Rust Vulnerability Let Hackers Inject Commands on Windows Systems

A new critical vulnerability has been discovered in two of the Rust standard libraries, which could allow a threat actor…

1 year ago
Multiple CData Vulnerabilities Let Attackers Bypass Security RestrictionsMultiple CData Vulnerabilities Let Attackers Bypass Security Restrictions

Multiple CData Vulnerabilities Let Attackers Bypass Security Restrictions

A path traversal vulnerability was discovered in the Java versions of multiple CData products when using the embedded Jetty server,…

1 year ago