Security News

Update Chrome Browser Now: 4th Zero-Day Exploit Discovered in May 2024

2024-05-24 10:10

Google on Thursday rolled out fixes to address a high-severity security flaw in its Chrome browser that it said has been exploited in the wild. Assigned the CVE identifier CVE-2024-5274, the...

#browser #chrome #exploit #update #zeroday #CVE-2024-5274

Ransomware Attacks Exploit VMware ESXi Vulnerabilities in Alarming Pattern

2024-05-23 17:03

Ransomware attacks targeting VMware ESXi infrastructure following an established pattern regardless of the file-encrypting malware deployed. "Virtualization platforms are a core component of...

#attack #esxi #exploit #ransomware #vmware #vulnerabilities

GHOSTENGINE Exploits Vulnerable Drivers to Disable EDRs in Cryptojacking Attack

2024-05-22 08:57

Cybersecurity researchers have discovered a new cryptojacking campaign that employs vulnerable drivers to disable known security solutions (EDRs) and thwart detection in what's called a Bring...

#attack #cryptojacking #EDR #exploit

Malware Delivery via Cloud Services Exploits Unicode Trick to Deceive Users

2024-05-21 14:19

A new attack campaign dubbed CLOUD#REVERSER has been observed leveraging legitimate cloud storage services like Google Drive and Dropbox to stage malicious payloads. "The VBScript and PowerShell...

#cloud #exploit #malware

QNAP QTS zero-day in Share feature gets public RCE exploit

2024-05-20 14:57

The above bugs impact QTS, the NAS operating system on QNAP devices, QuTScloud, the VM-optimized version of QTS, and QTS hero, a specialized version focused on high performance. QNAP has addressed CVE-2023-50361 through CVE-2023-50364 in a security update released in April 2024, in versions QTS 5.1.6.2722 build 20240402 and later, and QuTS hero h5.1.6.2734 build 20240414 and later.

#exploit #qnap #RCE #zeroday #CVE-2023-50364 #CVE-2023-50361 #CVE-2024-27130

PoC exploit for Ivanti EPMM privilege escalation flaw released (CVE 2024-22026)

2024-05-20 10:48

Technical details about and a proof-of-concept (PoC) exploit for CVE-2024-22026, a privilege escalation bug affecting Ivanti EPMM, has been released by the vulnerability’s reporter. About...

#CVE #exploit #ivanti #POC #CVE-2024-22026

Cyber Criminals Exploit GitHub and FileZilla to Deliver Malware Cocktail

2024-05-20 09:26

A "multi-faceted campaign" has been observed abusing legitimate services like GitHub and FileZilla to deliver an array of stealer malware and banking trojans such as Atomic (aka AMOS), Vidar,...

#criminal #exploit #github #malware

Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking

2024-05-17 17:20

The cryptojacking group known as Kinsing has demonstrated its ability to continuously evolve and adapt, proving to be a persistent threat by swiftly integrating newly disclosed vulnerabilities to...

#botnet #cryptojacking #exploit #hacker

North Korean Hackers Exploit Facebook Messenger in Targeted Malware Campaign

2024-05-16 13:48

The North Korea-linked Kimsuky hacking group has been attributed to a new social engineering attack that employs fictitious Facebook accounts to targets via Messenger and ultimately delivers...

#exploit #facebook #hacker #malware #northkorean

Microsoft fixes a bug abused in QakBot attacks plus a second under exploit

2024-05-14 22:15

Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.

#attack #exploit #microsoft

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News