Malicious PyPi packages contained the W4SP Stealer malware
Five malicious packages were found on the Python Package Index (PyPI), stealing passwords, Discord authentication cookies, and cryptocurrency wallets from unsuspecting developers. Having already been acquired by hundreds of software [...]
Patch Released for CVE-2023-25194 RCE Vulnerability in Apache Kafka
A vulnerability addressed by the latest update for Apache Kafka is an unsafe Java deserialization issue that could be exploited to execute code remotely, with authentication. CVE-2023-25194 Tracked as CVE-2023-25194, Apache Kafka [...]
Linux Variant of Cl0p Ransomware Emerges
Cl0p has been one of the most active ransomware families over the past several years, targeting numerous private and public organizations globally, in sectors such as aerospace, energy, education, finance, [...]
ESXiArgs Ransomware Attack Targets VMware Servers Worldwide
The vulnerability, tracked as CVE-2021-21974, is caused by a stack overflow issue in the OpenSLP service that unauthenticated threat actors in low-complexity attacks can exploit. What is ESXiArgs Ransomware ? ESXiArgs is a [...]
Clop ransomware for Linux: Flaw allows file recovery
The Clop ransomware operation now also uses a variant of the malware that only targets Linux servers, but a flaw in the encryption system allows victims to recover their files [...]
Get Social