Misconfigured SAP systems vulnerable to ’10KBlaze’ cyberattacks
Security researchers have discovered nearly 50,000 misconfigured SAP systems may be vulnerable to exploits dubbed "10KBlaze" and lead to the full compromise of SAP applications.
Electrum DDoS botnet infects over 150K hosts
Hackers have infected nearly 152,000 hosts with a Distributed Denial of Service (DDoS) botnet targeting Electrum developers and their servers.
BabyShark malware expands targets to cryptocurrency industry
Attackers behind BabyShark malware and cyber campaigns is now targeting the cryptocurrency industry.
DNSpionage campaign delivers Karkoff malware
Threat actors behind a cyber attack campaign DNSpionage have been changing their tactics by delivering a new malware dubbed "Karkoff" in an effort to avoid detection.
Cisco patches Critical Vulnerability, warns of known public exploits
Cisco released security updates to patch critical vulnerabilities in multiple Cisco IOS products as well as high severity bugs in Cisco Wireless LAN, IOS, and other products. Two advisories have been updated with known public vulnerability exploits as recently evealed in Sea Turtle DNS hijacking campaign.
“Sea Turtle” DNS hijacking campaign
Security experts warn of a new cyber threat campaign dubbed "Sea Turtle" that targets public and private organizations in the Middle East and North Africa. The ongoing operation likely lasted from January 2017 through the first quarter of this year.
Wipro data breach
Cybercrime investigative journalist Brian Krebs reports the Indian IT outsourcing and consulting company Wipro has been hacked. Multiple sources had informed Krebs that attackers breached Wipro's internal IT systems and then used those systems to then launch attacks against Wipro's customers.
HawkEye Reborn: Password Stealer and Keylogger threat
Cisco's Talos security team has observed ongoing malware distribution campaigns that use a new version of a keylogger and password stealer "HawkEye Reborn v9."
Microsoft provides new details on WinRar bug exploits
Microsoft security researchers revealed additional details on how cyber attackers were able to exploit the 19 year old WinRar vulnerability last March.
FIN6 intrusion links to LockerGoga and Ryuk ransomware
Researchers at FireEye have discovered links between the FIN6 cyber criminal group and LockerGoga and Ryuk ransomware used in recent cyber attacks.