Security News

Hackers Exploit Severe PHP Flaw to Deploy Quasar RAT and XMRig Miners

2025-03-19 15:52

Threat actors are exploiting a severe security flaw in PHP to deliver cryptocurrency miners and remote access trojans (RATs) like Quasar RAT. The vulnerability, assigned the CVE identifier...

#exploit #hacker #PHP #RAT #CVE-2024-4577

Critical PHP RCE vulnerability mass exploited in new attacks

2025-03-11 14:26

Threat intelligence company GreyNoise warns that a critical PHP remote code execution vulnerability that impacts Windows systems is now under mass exploitation. [...]

#attack #critical #PHP #RCE #vulnerability

PHP-CGI RCE Flaw Exploited in Attacks on Japan's Tech, Telecom, and E-Commerce Sectors

2025-03-07 04:42

Threat actors of unknown provenance have been attributed to a malicious campaign predominantly targeting organizations in Japan since January 2025. "The attacker has exploited the vulnerability...

#attack #ecommerce #japan #PHP #RCE #tech #telecom #CVE-2024-4577

Unpatched PHP Voyager Flaws Leave Servers Open to One-Click RCE Exploits

2025-01-30 07:21

Three security flaws have been disclosed in the open-source PHP package Voyager that could be exploited by an attacker to achieve one-click remote code execution on affected instances. "When an...

#exploit #PHP #RCE #server

Python-Based Bots Exploiting PHP Servers Fuel Gambling Platform Proliferation

2025-01-17 13:06

Cybersecurity researchers have exposed a new campaign that targets web servers running PHP-based applications to promote gambling platforms in Indonesia. "Over the past two months, a significant...

#BOT #PHP #python #server

New Glutton Malware Exploits Popular PHP Frameworks Like Laravel and ThinkPHP

2024-12-16 09:09

Cybersecurity researchers have discovered a new PHP-based backdoor called Glutton that has been put to use in cyber attacks targeting China, the United States, Cambodia, Pakistan, and South...

#exploit #framework #malware #PHP

Winnti hackers target other threat actors with new Glutton PHP backdoor

2024-12-15 15:19

The Chinese Winnti hacking group is using a new PHP backdoor named 'Glutton' in attacks on organizations in China and the U.S., and also in attacks on other cybercriminals. [...]

#backdoor #hacker #PHP #threat

Hackers use PHP exploit to backdoor Windows systems with new malware

2024-08-20 17:49

Unknown attackers have deployed a newly discovered backdoor dubbed Msupedge on a university's Windows systems in Taiwan, likely by exploiting a recently patched PHP remote code execution...

#backdoor #exploit #hacker #malware #PHP #systems #windows #CVE-2024-4577

Hackers Exploit PHP Vulnerability to Deploy Stealthy Msupedge Backdoor

2024-08-20 10:25

A previously undocumented backdoor named Msupedge has been put to use against a cyber attack targeting an unnamed university in Taiwan. "The most notable feature of this backdoor is that it communicates with a command-and-control server via DNS traffic," the Symantec Threat Hunter Team, part of Broadcom, said in a report shared with The Hacker News.

#backdoor #exploit #hacker #PHP #vulnerability

WhatsApp for Windows lets Python, PHP scripts execute with no warning

2024-07-27 14:18

A security issue in the latest version of WhatsApp for Windows allows sending Python and PHP attachments that are executed without any warning when the recipient opens them. WhatsApp blocks multiple file types considered to carry a risk to users but the company tells BleepingComputer that it does not plan to add Python scripts to the list.

#PHP #python #whatsapp #windows

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News