Microsoft fixes Windows zero-day exploited in ransomware attacks
Microsoft fixed zero-day vulnerability that malicious actors were exploiting to bypass its anti-malware service windows smart screen based on cloud and deliver ransomware payloads Magniber without any warning. About CVE-2023-23397 “CVE-2023-23397 is a critical EOP Vulnerability [...]
-
GoBruteforcer: New Golang-Based Malware Breaches Web Servers Via Brute-Force Attacks GalleryGoBruteforcer: New Golang-Based Malware Breaches Web Servers Via Brute-Force Attacks
Compromised, Data Breach, Exploitation, malicious cyber actors, Malicious extension, Malware, Security Advisory, Security Update
GoBruteforcer: New Golang-Based Malware Breaches Web Servers Via Brute-Force Attacks
A recently identified Golang-based botnet is targeting web servers running FTP, MySQL, phpMyAdmin, and Postgres services, Palo Alto Networks reports. How GoBruteforcer works and what devices it targets Cybersecurity researchers [...]
Clop ransomware: Breached companies via GoAnywhere MFT zero-day
The gang behind it Clop ransomware has begun extorting companies whose data were stolen thanks to the use of a zero-day vulnerability in your file sharing solution Fortra GoAnywhere MFT. The Clop ransomware gang, responsible for [...]
Xenomorph Android malware: Now stealing data from 400 banks
A new version of the Xenomorph Android malware has been released with increased malicious capabilities, such as the Automatic Transfer System framework and the ability to steal credentials from 400 [...]
Proof-of-Concept released for critical Microsoft Word RCE bug
A PoC exploit for CVE-2023-21716, a critical RCE vulnerability in Microsoft Word that can be exploited when the user previews a specially crafted RTF document, is now publicly available. Joshua [...]
Get Social