Recent Security News

  • Kinsing Cyberattackers Target Apache ActiveMQ Flaw to Mine Crypto

    November 21, 2023 at 11:39AM Attackers are exploiting a critical remote code execution vulnerability in Apache ActiveMQ to target Linux systems with a cryptocurrency miner. The malware, known as Kinsing, infects vulnerable systems and deploys a cryptocurrency-mining script that drains resources. The flaw, tracked as CVE-2023-46604, allows remote attackers to execute arbitrary commands on affected…

    Read More

  • Sumo Logic wrestles with security breach, pins down customer data

    November 21, 2023 at 11:38AM Sumo Logic has confirmed that no customer data was compromised in a potential security breach. The company discovered unauthorized access to one of its AWS accounts but quickly secured the infrastructure and rotated customer credentials as a precaution. Sumo Logic will undertake further evaluation to prevent future incidents. Key takeaways…

    Read More

  • #StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability

    November 21, 2023 at 11:29AM This joint Cybersecurity Advisory (CSA) aims to provide network defenders with information about the LockBit 3.0 ransomware and its exploitation of the CVE-2023-4966 vulnerability affecting Citrix NetScaler web application delivery control (ADC) and NetScaler Gateway appliances. The CSA includes tactics, techniques, and indicators of compromise (IOCs) obtained from various organizations,…

    Read More

  • DarkGate and Pikabot malware emerge as Qakbot’s successors

    November 21, 2023 at 10:56AM A sophisticated phishing campaign using DarkGate and PikaBot malware is posing a significant threat to organizations. The campaign began after the takedown of the Qakbot operation and is considered one of the most advanced since then. The attackers employ tactics similar to the previous Qakbot campaigns, indicating a shift to…

    Read More

  • Criminal IP Becomes VirusTotal IP and URL Scan Contributor

    November 21, 2023 at 10:56AM VirusTotal, a cybersecurity intelligence website, has integrated IP address and URL scans from Criminal IP, a Cyber Threat Intelligence search engine. VirusTotal aggregates data from antivirus engines, website scanners, and user contributions to enhance internet safety. Criminal IP specializes in aggregating threat data related to IP and domain addresses and…

    Read More