Security News

New “whoAMI” Attack Exploits AWS AMI Name Confusion for Remote Code Execution
2025-02-14 18:42

Cybersecurity researchers have disclosed a new type of name confusion attack called whoAMI that allows anyone who publishes an Amazon Machine Image (AMI) with a specific name to gain code...

Kimsuky hackers use new custom RDP Wrapper for remote access
2025-02-06 18:55

The North Korean hacking group known as Kimsuky was observed in recent attacks using a custom-built RDP Wrapper and proxy tools to directly access infected machines. [...]

Malicious Go Package Exploits Module Mirror Caching for Persistent Remote Access
2025-02-04 14:16

Cybersecurity researchers have called attention to a software supply chain attack targeting the Go ecosystem that involves a malicious package capable of granting the adversary remote access to...

The Advantages of Cloud-Based Remote Desktop versus RDP over VPN
2025-01-30 15:11

Remote work is now an essential part of many businesses, requiring organizations to rethink how they provide secure and efficient access to corporate resources. Learn from TruGrid about the...

Critical Cacti Security Flaw (CVE-2025-22604) Enables Remote Code Execution
2025-01-29 10:21

A critical security flaw has been disclosed in the Cacti open-source network monitoring and fault management framework that could allow an authenticated attacker to achieve remote code execution...

GitHub Desktop Vulnerability Risks Credential Leaks via Malicious Remote URLs
2025-01-27 14:17

Multiple security vulnerabilities have been disclosed in GitHub Desktop as well as other Git-related projects that, if successfully exploited, could permit an attacker to gain unauthorized access...

Meta's Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks
2025-01-26 10:15

A high-severity security flaw has been disclosed in Meta's Llama large language model (LLM) framework that, if successfully exploited, could allow an attacker to execute arbitrary code on the...

QakBot-Linked BC Malware Adds Enhanced Remote Access and Data Gathering Features
2025-01-23 09:43

Cybersecurity researchers have disclosed details of a new BackConnect (BC) malware that has been developed by threat actors linked to the infamous QakBot loader. "BackConnect is a common feature...

Rsync vulnerabilities allow remote code execution on servers, patch quickly!
2025-01-15 14:24

Six vulnerabilities have been fixed in the newest versions of Rsync (v3.4.0), two of which could be exploited by a malicious client to achieve arbitrary code execution on a machine with a running...

Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection
2025-01-09 09:35

Threat actors are attempting to take advantage of a recently disclosed security flaw impacting GFI KerioControl firewalls that, if successfully exploited, could allow malicious actors to achieve...