Security News

New Report Uncovers 3 Distinct Clusters of China-Nexus Attacks on Southeast Asian Government
2023-09-25 06:45

An unnamed Southeast Asian government has been targeted by multiple China-nexus threat actors as part of espionage campaigns targeting the region over extended periods of time. "While this...

Nexus Android malware targets 450 financial applications
2023-03-29 13:58

Nexus malware is an Android banking trojan promoted via a malware-as-a-service model. In an underground cybercrime forum ad, the malware project is described as "Very new" and "Under continuous development." More messages from the Nexus author in one forum thread indicate the malware code has been created from scratch.

Nexus: A New Rising Android Banking Trojan Targeting 450 Financial Apps
2023-03-23 11:55

An emerging Android banking trojan dubbed Nexus has already been adopted by several threat actors to target 450 financial applications and conduct fraud. "Nexus provides all the main features to perform ATO attacks against banking portals and cryptocurrency services, such as credentials stealing and SMS interception."

Cisco Releases Patches for Critical Flaws Impacting Nexus Dashboard for Data Centers
2022-07-21 11:32

The most severe of the issues are CVE-2022-20857, CVE-2022-20858, and CVE-2022-20861, which impact Cisco Nexus Dashboard for data centers and cloud network infrastructures and could enable an "Unauthenticated remote attacker to execute arbitrary commands, read or upload container image files, or perform a cross-site request forgery attack." CVE-2022-20857 - Cisco Nexus Dashboard arbitrary command execution vulnerability.

Cisco Issues Critical Fixes for High-End Nexus Gear
2021-08-25 22:48

Cisco Systems released six security patches tied to its high-end 9000 series networking gear ranging in importance from critical, high and medium severity. The most serious of the bugs patched by Cisco could allow a remote and unauthenticated adversary to read or write arbitrary files on to an application protocol interface used in Cisco 9000 series switches designed to manage its software-defined networking data center solution.

Severe Cisco DoS Flaw Can Cripple Nexus Switches
2020-06-02 16:16

Cisco has patched a high-severity flaw in its NX-OS software, the network operating system used by Cisco's Nexus-series Ethernet switches. If exploited, the vulnerability could allow an unauthenticated, remote attacker to bypass the input access control lists configured on affected Nexus switches - and launch a denial of service attacks on the devices.

Dark Nexus: A New Emerging IoT Botnet Malware Spotted in the Wild
2020-04-08 03:55

Cybersecurity researchers have discovered a new emerging IoT botnet threat that leverages compromised smart devices to stage 'distributed denial-of-service' attacks, potentially triggered on-demand through platforms offering DDoS-for-hire services. Helios as the individual behind the development of dark nexus, who is a known botnet author infamous for selling DDoS services on social media platforms and using a YouTube channel to advertise its capabilities.

Nexus Controls, a Baker Hughes business, integrates Tripwire ICS capabilities into SecurityST
2019-11-25 01:00

Tripwire, a leading global provider of security and compliance solutions for enterprises and industrial organizations, announced a technology agreement with Baker Hughes. Under the agreement,...

Nexus Repository Flaws Expose Thousands of Private Artifacts
2019-07-03 12:57

Two vulnerabilities in Nexus Repository exposed thousands of private artifacts across a broad range of industries, Twistlock’s security researchers reveal. read more

The ISACA Cybersecurity Nexus program outlines paths for cybersecurity careers
2019-06-03 01:00

According to new research, nearly 30 percent of those hiring for a cybersecurity position say fewer than one-quarter of job applicants are qualified. To help cybersecurity professionals prepare...