Month: November 2024
-
Phishing emails increasingly use SVG attachments to evade detection
Threat actors increasingly use Scalable Vector Graphics (SVG) attachments to display phishing forms or deploy malware while evading detection.Most images…
-
Security plugin flaw in millions of WordPress sites gives admin access
A critical authentication bypass vulnerability has been discovered impacting the WordPress plugin ‘Really Simple Security’ (formerly ‘Really Simple SSL’), including…
-
Ancient TP-Link Backdoor Discovered by Attackers, (Sun, Nov 17th)
[Ancient TP-Link Backdoor Discovered by Attackers](/forums/diary/Ancient+TPLink+Backdoor+Discovered+by+Attackers/31442/)========================================================================================================================* * [](http://www.facebook.com/sharer.php?u=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31442 ‘Share on Facebook’)* [](http://twitter.com/share?text=Ancient%20TP-Link%20Backdoor%20Discovered%20by%20Attackers&url=https%3A%2F%2Fisc.sans.edu%2Fforums%2Fdiary%2F31442&via=SANS_ISC ‘Share on Twitter’) **Published** : 2024-11-17. **Last Updated**…
-
[BLACKSUIT] – Ransomware Victim: brandywinecoachworks[.]com
* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[BLACKSUIT-] — Ransomware Victim: brandywinecoachworks-[.-]com================================================================[November 16, 2024](https://www.redpacketsecurity.com/2024/11/) Ransomware Group: **BLACKSUIT**===============================### VICTIM…
-
[BLACKSUIT] – Ransomware Victim: kapurinc[.]com
* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[BLACKSUIT-] — Ransomware Victim: kapurinc-[.-]com====================================================[November 16, 2024](https://www.redpacketsecurity.com/2024/11/) Ransomware Group: **BLACKSUIT**===============================### VICTIM…
-
A botnet exploits e GeoVision zero-day to compromise EoL devices
A botnet employed in DDoS or cryptomining attacks is exploiting a zero-day in end-of-life GeoVision devices to grow up.———————————————————————————————————————–Researchers at…
-
Fake AI video generators infect Windows, macOS with infostealers
Fake AI image and video generators infect Windows and macOS with the Lumma Stealer and AMOS information-stealing malware, used…
-
BrazenBamboo APT Exploiting FortiClient Zero-Day to Steal User Credentials
A sophisticated cyber espionage campaign conducted by a threat actor known as BrazenBamboo. The group is exploiting an unpatched vulnerability…
-
Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails
A newly discovered vulnerability in Windows NT LAN Manager (NTLM) has been exploited by suspected Russian hackers in cyber attacks…
-
Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails
A newly discovered vulnerability in Windows NT LAN Manager (NTLM) has been exploited by suspected Russian hackers in cyber attacks…