Lucene search
K

57 matches found

HackRead
HackRead
added 2026/04/03 5:5 p.m.3 views

North Korean Hackers Abuse GitHub to Spy on South Korean Firms

Researchers from FortiGuard Labs have uncovered a high-severity spying campaign targeting South Korean companies. Discover how North Korean…...

5.9AI score
Exploits0
HackRead
HackRead
added 2025/09/12 4:15 p.m.6 views

SEO Poisoning Attack Hits Windows Users With Hiddengh0st and Winos Malware

New SEO poisoning campaign exposed! FortiGuard Labs reveals how attackers trick users with fake websites to deliver Hiddengh0st…...

7AI score
Exploits0
HackRead
HackRead
added 2025/03/03 2:9 p.m.6 views

New Malware Campaign Exploits Microsoft Graph API to Infect Windows

FortiGuard Labs discovers an advanced attack using modified Havoc Demon and SharePoint. Explore the attack's evasion techniques and security measures...

7.5AI score
Exploits0
HackRead
HackRead
added 2025/01/01 10:42 a.m.10 views

FortiGuard Labs Links New EC2 Grouper Hackers to AWS Credential Exploits

Researchers at FortiGuard Labs have identified a prolific attacker group known as "EC2 Grouper" who frequently exploits compromised credentials using AWS tools...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/10/14 11:35 a.m.51 views

Nation-State Attackers Exploiting Ivanti CSA Flaws for Network Infiltration

A suspected nation-state adversary has been observed weaponizing three security flaws in Ivanti Cloud Service Appliance CSA as zero-days to perform a series of malicious actions. That's according to findings from Fortinet FortiGuard Labs, which said the vulnerabilities were abused to gain...

9.1CVSS8.7AI score0.99951EPSS
Exploits8
The Hacker News
The Hacker News
added 2024/07/24 6:15 a.m.65 views

Microsoft Defender Flaw Exploited to Deliver ACR, Lumma, and Meduza Stealers

A now-patched security flaw in the Microsoft Defender SmartScreen has been exploited as part of a new campaign designed to deliver information stealers such as ACR Stealer, Lumma, and Meduza. Fortinet FortiGuard Labs said it detected the stealer campaign targeting Spain, Thailand, and the U.S...

8.1CVSS8.1AI score0.95443EPSS
Exploits2
HackRead
HackRead
added 2024/06/20 11:15 a.m.19 views

New Fickle Stealer Exploits Software Flaws to Steal Crypto, Browser Data

Fortinet's FortiGuard Labs exposes the Fickle Stealer, a malware using multiple attack methods to steal logins, financial details, and more. Learn how to protect yourself from this evolving threat...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/05 9:40 a.m.31 views

From PDFs to Payload: Bogus Adobe Acrobat Reader Installers Distribute Byakugan Malware

Bogus installers for Adobe Acrobat Reader are being used to distribute a new multi-functional malware dubbed Byakugan. The starting point of the attack is a PDF file written in Portuguese that, when opened, shows a blurred image and asks the victim to click on a link to download the Reader...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/05 7:48 a.m.47 views

New Wave of JSOutProx Malware Targeting Financial Firms in APAC and MENA

Financial organizations in the Asia-Pacific APAC and Middle East and North Africa MENA are being targeted by a new version of an "evolving threat" called JSOutProx. "JSOutProx is a sophisticated attack framework utilizing both JavaScript and .NET," Resecurity said in a technical report published...

7.1AI score
Exploits0
HackRead
HackRead
added 2024/01/28 5:22 p.m.12 views

Crypto Stealing PyPI Malware Hits Both Windows and Linux Users

By Deeba Ahmed FortiGuard Labs latest research report reveals a concerning trend: threat actors are leveraging the Python Package Index PyPI,… This is a post from HackRead.com Read the original post: Crypto Stealing PyPI Malware Hits Both Windows and Linux Users...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/01/04 10:35 a.m.34 views

Beware: 3 Malicious PyPI Packages Found Targeting Linux with Crypto Miners

Three new malicious packages have been discovered in the Python Package Index PyPI open-source repository with capabilities to deploy a cryptocurrency miner on affected Linux devices. The three harmful packages, named modularseven, driftme, and catme, attracted a total of 431 downloads over the...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/10/10 5:52 a.m.83 views

Citrix Devices Under Attack: NetScaler Flaw Exploited to Capture User Credentials

A recently disclosed critical flaw in Citrix NetScaler ADC and Gateway devices is being exploited by threat actors to conduct a credential harvesting campaign. IBM X-Force, which uncovered the activity last month, said adversaries exploited "CVE-2023-3519 to attack unpatched NetScaler Gateways to...

10CVSS8.5AI score0.99445EPSS
Exploits18
The Hacker News
The Hacker News
added 2023/10/04 11:16 a.m.43 views

Rogue npm Package Deploys Open-Source Rootkit in New Supply Chain Attack

A new deceptive package hidden within the npm package registry has been uncovered deploying an open-source rootkit called r77, marking the first time a rogue package has delivered rootkit functionality. The package in question is node-hide-console-windows, which mimics the legitimate npm package...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2023/09/03 4:42 a.m.102 views

PoC Exploit Released for Critical VMware Aria's SSH Auth Bypass Vulnerability

Proof-of-concept PoC exploit code has been made available for a recently disclosed and patched critical flaw impacting VMware Aria Operations for Networks formerly vRealize Network Insight. The flaw, tracked as CVE-2023-34039, is rated 9.8 out of a maximum of 10 for severity and has been describe...

9.8CVSS9.1AI score0.63947EPSS
Exploits9
HackRead
HackRead
added 2023/08/09 4:43 p.m.13 views

Rust-Based Injector Deploys XWorm and Remcos RAT in Multi-Stage Attack

By Waqas FortiGuard Labs Reveals Insights into Recent Surge of Cyberattacks Utilizing Rust Programming Language. This is a post from HackRead.com Read the original post: Rust-Based Injector Deploys XWorm and Remcos RAT in Multi-Stage Attack...

6.9AI score
Exploits0
HackRead
HackRead
added 2023/07/25 11:27 a.m.14 views

Critical Flaws Exposed Microsoft Message Queuing Service to DoS Attacks

By Deeba Ahmed Researchers at the AI-powered Security solutions provider, FortiGuard Labs, have been monitoring Microsoft Message Queuing MSMQ service for… This is a post from HackRead.com Read the original post: Critical Flaws Exposed Microsoft Message Queuing Service to DoS Attacks...

7AI score
Exploits0
HackRead
HackRead
added 2023/07/18 6:42 p.m.17 views

FortiGuard Labs Discovers .ZIP Domains Fueling Phishing Attacks

By Waqas According to Fortinet Labs, third parties have already purchased top-level domains TLD such as Joomla.zip and MSNBC.zip, which could potentially be a breach of the Anticybersquatting Consumer Protection Act ACPA. This is a post from HackRead.com Read the original post: FortiGuard Labs...

6.9AI score
Exploits0
HackRead
HackRead
added 2023/06/21 10:43 p.m.11 views

New DDoS Botnet ‘Condi’ Targets Vulnerable TP-Link AX21 Routers

By Deeba Ahmed FortiGuard Labs has identified numerous Condi DDoS botnet samples that exploit other known security flaws, putting unpatched software at a higher risk of being exploited by botnet malware. This is a post from HackRead.com Read the original post: New DDoS Botnet Condi Targets...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/03/09 2:1 p.m.143 views

IceFire Ransomware Exploits IBM Aspera Faspex to Attack Linux-Powered Enterprise Networks

A previously known Windows-based ransomware strain known as IceFire has expanded its focus to target Linux enterprise networks belonging to several media and entertainment sector organizations across the world. The intrusions entail the exploitation of a recently disclosed deserialization...

9.8CVSS1AI score0.99968EPSS
Exploits5
The Hacker News
The Hacker News
added 2023/02/28 1:59 p.m.34 views

Bitdefender Releases Free Decryptor for MortalKombat Ransomware Strain

Romanian cybersecurity company Bitdefender has released a free decryptor for a new ransomware strain known as MortalKombat. MortalKombat is a new ransomware strain that emerged in January 2023. It's based on commodity ransomware dubbed Xorist and has been observed in attacks targeting entities in...

1.3AI score
Exploits0
Rows per page
Query Builder