Recent Security News
-
Veeam warns of critical bugs in Veeam ONE monitoring platform
November 6, 2023 at 04:59PM Veeam has released hotfixes to address four vulnerabilities in its Veeam ONE IT infrastructure monitoring and analytics platform. Two of the vulnerabilities are critical and allow attackers to gain remote code execution and steal NTLM hashes. The remaining two are medium-severity bugs. The company has provided hotfixes for actively supported…
-
Gootloader Aims Malicious, Custom Bot Army at Enterprise Networks
November 6, 2023 at 04:50PM The Gootloader Group, previously known for being an initial access broker and malware operator, has developed a new tool called GootBot. GootBot spreads bots in enterprise environments after compromising them. This new tool is more destructive and difficult to detect. Each bot is controlled by its own command-and-control server, and…
-
Virtual Kidnapping: AI Tools Are Enabling IRL Extortion Scams
November 6, 2023 at 04:43PM Researchers at Trend Micro are warning of a new trend called “virtual kidnapping” which combines cyber compromise, social media intel, and AI voice cloning software to convince targets that their loved ones have been kidnapped. Attackers are increasingly leveraging advanced AI technology to make these attacks more convincing. Traditional security…
-
Novel Google Cloud RAT Uses Calendar Events for C2
November 6, 2023 at 04:28PM Google is warning about the increasing use of native cloud tools by attackers to hide their malicious activities. They highlighted a proof-of-concept exploit called “Google Calendar RAT,” which allows hackers to repurpose Google Calendar events for command-and-control purposes. Although Google has fixed this particular issue, they emphasize that every cloud…
-
Hackers exploit Looney Tunables Linux bug, steal cloud creds
November 6, 2023 at 03:26PM The Kinsing malware operators are targeting vulnerable cloud environments using a Linux security issue known as “Looney Tunables” (CVE-2023-4911). The malware exploits this vulnerability to gain root privileges on compromised systems. Kinsing is known for breaching cloud-based systems and deploying cryptomining software. Recent attacks have targeted Kubernetes clusters through misconfigured…