Researchers from Trend Micro have discovered cybercriminal group TeamTNT leaking credentials from two of their attacker-controlled accounts via exposed Docker REST APIs.
Cybercriminal group TeamTNT leaks DockerHub credentials Read More »
Security researchers from Palo Alto Networks Unit 42 have discovered a Mirai botnet variant dubbed “MooBot” that targets multiple D-Link flaws and exposed networking devices running Linux.
Mirai variant MooBot botnet targets multiple D-Link flaws Read More »
The Cybersecurity and Infrastructure Security Agency (CISA) has added 12 vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include Apple, Chrome, Android OS, D-Link (5), QNAP NAS, MikroTik, Oracle WebLogic, FortiOS and FortiADC flaws.
CISA adds 12 vulnerabilities to Known Exploited Vulnerabilities Catalog Read More »
A new report published by Trend Micro revealed that Linux malware and cloud misconfigurations make up some of the top cybersecurity threats facing organizations over the first half of 2022.
Report: Linux malware and cloud misconfigurations top cybersecurity threats Read More »
Google has released Chrome 105.0.5195.102 for Windows, Mac and Linux with a fix for a High severity zero-day vulnerability (CVE-2022-3075) exploited in the wild.
Google fixes Chrome 105 zero-day vulnerability (CVE-2022-3075) exploited in the wild Read More »
Apple has fixed a zero-day vulnerability (CVE-2022-32893) in iOS 12.5.6 under attack in the wild.
Apple fixes zero-day vulnerability (CVE-2022-32893) in iOS 12.5.6 exploited in the wild Read More »
The Mozilla Foundation has patched four High risk vulnerabilities in Firefox 104, as well as a number of other bug fixes.
Mozilla releases Firefox 104 with fixes for 4 High severity vulnerabilities Read More »
VMware has released a security update for VMware Tools that fixes a local privilege escalation vulnerability (CVE-2022-31676).
VMware Tools update fixes local privilege escalation vulnerability (CVE-2022-31676) Read More »
The Federal Bureau of Investigation (FBI) have spotted cybercriminals using proxies and configurations to launch credential stuffing attacks against US companies.
Cybercriminals use proxies and configurations to launch credential stuffing attacks Read More »
Palo Alto Networks Unit 42 researchers released a new report “Network Security Trends” that highlights how attackers are exploiting remote code execution (RCE), cross-site scripting (XSS), traversal and information disclosure vulnerabilities in multiple vendor products.
