January

The biggest cybersecurity and cyberattack stories of 2023

2024-01-01 15:09

The company states that the attackers only breached a small number of accounts during the credential-stuffing attacks. The increasing DDoS attacks and their impact led the U.S. Cybersecurity and Infrastructure Security Agency to release an advisory about these incidents.

#cyberattack #cybersecurity

New Variant of DLL Search Order Hijacking Bypasses Windows 10 and 11 Protections

2024-01-01 14:00

Security researchers have detailed a new variant of a dynamic link library (DLL) search order hijacking technique that could be used by threat actors to bypass security mechanisms and achieve...

#hijacking #windows #windows10

New Terrapin Flaw Could Let Attackers Downgrade SSH Protocol Security

2024-01-01 09:37

Security researchers from Ruhr University Bochum have discovered a vulnerability in the Secure Shell (SSH) cryptographic network protocol that could allow an attacker to downgrade the connection's...

#security #SSH #CVE-2023-48795

New JinxLoader Targeting Users with Formbook and XLoader Malware

2024-01-01 06:52

A new Go-based malware loader called JinxLoader is being used by threat actors to deliver next-stage payloads such as Formbook and its successor XLoader. The disclosure comes from cybersecurity...

#malware