Cybercriminals are scanning servers for the Microsoft Exchange ProxyShell RCE vulnerabilities after technical details presented at the Black Hat
Similar Posts
Netgear Addresses Severe Bugs Affecting Several of Its Smart Switches
Last week, multinational computer networking company Netgear released security patches to tackle three high-severity flaws impacting over 20 of its products, mostly smart switches. The flaws were found and reported to the company by security engineer Gynvael Coldwind and are tracked by the vendor as PSV-2021-0140, PSV-2021-0144, PSV-2021-0145. The three vulnerabilities received a CVSS score…
Hackers Exploited Fortinet Bugs to Gain Access of a U.S. Gov Servers
Recently, APT group or the state-sponsored hackers have exploited the vulnerabilities in an unpatched Fortinet VPN to compromise the webserver of a U.S. municipal government web server, as reported by the FBI (Federal Bureau of Investigation). The APT (Advanced Persistent Threat) hackers created new servers, domain controllers, and workstation user accounts just after gaining access…
International Uyghur Community Targeted for Cyber-Espionage Through Facebook
Although Facebook has been banned in China, the company recently exposed hackers who used the social media platform to lure Uyghurs into downloading malicious software used for surveillance. According to Facebook’s Mike Dvilyanski, Head of Cyber Espionage Investigations, and Nathaniel Gleicher, Head of Security Policy, hackers “targeted activists, journalists and dissidents predominantly among Uyghurs from…
APT Groups Targeting Government Agencies
Application Security , Application Security & Online Fraud , Breach Notification Three FortiOS Vulnerabilities Being Exploited for the Campaign Akshaya Asokan (asokan_akshaya) • April 3, 2021 The U.S. Cybersecurity and Infrastructure Security Agency and the FBI warn that unidentified nation-state actors are scanning for three vulnerabilities in Fortinet’s operating system, FortiOS, to likely…
Experian API Leaks Most Americans’ Credit Scores
A researcher is claiming that the credit scores of almost every American were exposed through an API tool used by the Experian credit bureau, that he said was left open on a lender site without even basic security protections. Experian downplayed concerns from the security community that the issue could be systemic.
Windows Container Malware Targets Kubernetes Clusters
New malware that has been active for over a year has compromised Windows containers in order to further hack Kubernetes clusters and install backdoors in them with the aim of further malicious activity. Originally developed by Google and now maintained by the Cloud Native Computing Foundation, Kubernetes is an open-source system for automating the deployment,…