July 9, 2024 at 09:21AM Cybersecurity researchers discovered a vulnerability in the RADIUS network authentication protocol named BlastRADIUS, which allows attackers to carry out Mallory-in-the-middle attacks. This flaw affects all standards-compliant RADIUS clients and servers, making it crucial for ISPs and organizations to update their networking equipment. The vulnerability, with a CVSS score of 9.0, … Read more
April 24, 2024 at 11:15AM North Korean threat actor Kimsuky exploited eScan antivirus’s update mechanism in a malware operation known as GuptiMiner. This involved a man-in-the-middle attack to deliver a malicious payload, enabling the deployment of backdoors and cryptocurrency miners in corporate networks. Despite eScan’s efforts to address the issue, new GuptiMiner infections persist. In … Read more
December 20, 2023 at 03:44AM The SSH protocol vulnerability, dubbed the Terrapin Attack, can be exploited in man-in-the-middle attacks to weaken SSH security. By injecting messages during the handshake and blocking certain messages, attackers can downgrade security, potentially compromising user credentials. Mitigations include software updates and disabling vulnerable encryption modes. Details were disclosed by computer … Read more
October 27, 2023 at 10:43AM This week’s cybersecurity roundup highlights the increase in HTTP DDoS attacks, with gaming and gambling organizations being the most affected. The ENISA Threat Landscape report identifies DDoS attacks and ransomware as the top threats, while the FTC details its efforts to combat cross-border fraud and ransomware attacks. Cyber.org receives $6.8 … Read more