GoldBrute botnet targets 1.5M exposed RDP servers
A new botnet dubbed "GoldBrute" targets 1.5 million publicly exposed RDP servers on the internet via brute force attack.
Nansh0u campaign targets Windows MS-SQL and PHPMyAdmin servers
A China-based cyber campaign dubbed "Nansh0u" has targeted tens of thousands of unsecured Windows MS-SQL and PHPMyAdmin servers worldwide.
New Mirai variant exploits IoT devices
A new Mirai botnet variant has evolved to exploit 13 different vulnerabilities found on routers, surveillance products and other internet of things (IoT) devices.
RobbinHood ransomware holds Baltimore City’s data hostage
Baltimore City computer network has been a victim of a ransomware attack that has taken data for hostage and knocked out city services.
Magecart skimming attack targets online campus stores
Security researchers from Trend Micro have uncovered a Magecart skimming attack that targeted 201 online campus stores in the United States and Canada.
Misconfigured SAP systems vulnerable to ’10KBlaze’ cyberattacks
Security researchers have discovered nearly 50,000 misconfigured SAP systems may be vulnerable to exploits dubbed "10KBlaze" and lead to the full compromise of SAP applications.
Electrum DDoS botnet infects over 150K hosts
Hackers have infected nearly 152,000 hosts with a Distributed Denial of Service (DDoS) botnet targeting Electrum developers and their servers.
BabyShark malware expands targets to cryptocurrency industry
Attackers behind BabyShark malware and cyber campaigns is now targeting the cryptocurrency industry.
DNSpionage campaign delivers Karkoff malware
Threat actors behind a cyber attack campaign DNSpionage have been changing their tactics by delivering a new malware dubbed "Karkoff" in an effort to avoid detection.
Cisco patches Critical Vulnerability, warns of known public exploits
Cisco released security updates to patch critical vulnerabilities in multiple Cisco IOS products as well as high severity bugs in Cisco Wireless LAN, IOS, and other products. Two advisories have been updated with known public vulnerability exploits as recently evealed in Sea Turtle DNS hijacking campaign.