Security Advisory

Microsoft announces a significant domain change for Teams microsoft-hacked

microsoft-hacked

Microsoft announces a significant domain change for Teams

FHN March 21, 2024

In April 2023, Microsoft announced a multi-year initiative to unify authenticated, user-facing Microsoft 365 apps and services...

Androxgh0st exploits SMTP services to steal critical data caution sign data unlocking hackers

caution sign data unlocking hackers

Androxgh0st exploits SMTP services to steal critical data

FHN March 20, 2024

AndroxGh0st targets Laravel applications, scanning and extracting login credentials for AWS and Twilio from .env files. AndroxGh0st,...

Operation PhantomBlu: Attackers Exploit Weaponized MS Office Doc to Breach Windows microsoft-word-365-online

microsoft-word-365-online

Operation PhantomBlu: Attackers Exploit Weaponized MS Office Doc to Breach Windows

FHN March 20, 2024

Researchers at Perception Point have discovered a new malware campaign dubbed PhantomBlu, which targets US organizations. The...

Critical RCE Vulnerability in Fortra FileCatalyst Vulnerabilities and Exploits

Vulnerabilities and Exploits

Critical RCE Vulnerability in Fortra FileCatalyst

FHN March 19, 2024

A PoC has been published for a critical RCE vulnerability found in Fortra’s FileCatalyst software. RCE Vulnerability...

Discontinued WordPress Plugin Vulnerability Puts Websites at Risk of Cyber Attacks wordpress-g74a560834_1280

wordpress-g74a560834_1280

Discontinued WordPress Plugin Vulnerability Puts Websites at Risk of Cyber Attacks

FHN March 19, 2024

A critical vulnerability was found in miniOrange’s Malware Scanner and Web Application Firewall plugins, allowing unauthenticated attackers...