Russian APT Deploys New ‘Kapeka’ Backdoor in Eastern European Attacks
A beforehand undocumented “flexible” backdoor referred to as Kapeka has been “sporadically” observed in cyber assaults focusing on Jap Europe, together with Estonia and Ukraine, since at least mid-2022. The results appear from Finnish cybersecurity business…
Russian APT Deploys New ‘Kapeka’ Backdoor in Eastern European AttacksRead More
GenAI: A New Headache for SaaS Security Teams
The introduction of Open AI’s ChatGPT was a defining instant for the software industry, touching off a GenAI race with its November 2022 release. SaaS suppliers are now hurrying to up grade resources with enhanced efficiency…
Critical Atlassian Flaw Exploited to Deploy Linux Variant of Cerber Ransomware
Threat actors are exploiting unpatched Atlassian servers to deploy a Linux variant of Cerber (aka C3RB3R) ransomware. The assaults leverage CVE-2023-22518 (CVSS score: 9.1), a critical security vulnerability impacting the Atlassian Confluence Facts Middle and Server…
Critical Atlassian Flaw Exploited to Deploy Linux Variant of Cerber RansomwareRead More
Hackers Exploit Fortinet Flaw, Deploy ScreenConnect, Metasploit in New Campaign
Cybersecurity researchers have found out a new campaign that is exploiting a recently disclosed security flaw in Fortinet FortiClient EMS devices to provide ScreenConnect and Metasploit Powerfun payloads. The activity entails the exploitation of CVE-2023-48788 (CVSS…
Hackers Exploit Fortinet Flaw, Deploy ScreenConnect, Metasploit in New CampaignRead More
Cisco Warns of Global Surge in Brute-Force Attacks Targeting VPN and SSH Services
Cisco is warning about a world-wide surge in brute-force assaults targeting several devices, which include Digital Private Network (VPN) solutions, web software authentication interfaces, and SSH providers, due to the fact at minimum March 18, 2024.…
Cisco Warns of Global Surge in Brute-Force Attacks Targeting VPN and SSH ServicesRead More
OpenJS Foundation Targeted in Potential JavaScript Project Takeover Attempt
Security scientists have uncovered a “credible” takeover endeavor focusing on the OpenJS Foundation in a manner that evokes similarities to the just lately uncovered incident aimed at the open up-resource XZ Utils task. “The OpenJS Foundation…
OpenJS Foundation Targeted in Potential JavaScript Project Takeover AttemptRead More