Lucene search
K

11 matches found

The Hacker News
The Hacker News
added 2023/08/14 1:14 p.m.69 views

Ongoing Xurum Attacks on E-commerce Sites Exploiting Critical Magento 2 Vulnerability

E-commerce sites using Adobe's Magento 2 software are the target of an ongoing campaign that has been active since at least January 2023. The attacks, dubbed Xurum by Akamai, leverage a now-patched critical security flaw CVE-2022-24086, CVSS score: 9.8 in Adobe Commerce and Magento Open Source...

10CVSS8.1AI score0.99199EPSS
Exploits5
Imperva Blog
Imperva Blog
added 2023/08/07 12:57 p.m.14 views

Behind the Scenes of a Tailor-Made Massive Phishing Campaign

A global phishing campaign caught our attention after one of our colleagues was targeted by, and nearly fell victim, to a social engineering attack. The campaign involved more than 800 different scam domains and impersonated around 340 legitimate companies all over the world – including well-know...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/26 6:38 a.m.3 views

New COSMICENERGY Malware Exploits ICS Protocol to Sabotage Power Grids

A new strain of malicious software that's engineered to penetrate and disrupt critical systems in industrial environments has been unearthed. Google-owned threat intelligence firm Mandiant dubbed the malware COSMICENERGY , adding it was uploaded to the VirusTotal public malware scanning utility i...

7.6AI score
Exploits0
Schneier on Security
Schneier on Security
added 2023/05/09 3:20 p.m.22 views

PIPEDREAM Malware against Industrial Control Systems

Another nation-state malware, Russian in origin: In the early stages of the war in Ukraine in 2022, PIPEDREAM, a known malware was quietly on the brink of wiping out a handful of critical U.S. electric and liquid natural gas sites. PIPEDREAM is an attack toolkit with unmatched and unprecedented...

7AI score
Exploits0
Trellix
Trellix
added 2022/11/22 12:0 a.m.25 views

Yanluowang Ransomware Leaks Analysis: Organization, Collaboration with HelloKitty, Babuk and Conti

Yanluowang Ransomware Leaks Analysis: Organization, Collaboration with HelloKitty, Babuk and Conti By Jambul Tologonov· November 22, 2022 Introduction On October 31, 2022, Yanluowang’s TOR site was hacked displaying a message “check and mate!! Yanluowang Matrix chat hacked @yanluowangleaks Time’s...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/21 11:59 a.m.47 views

Here's How SolarWinds Hackers Stayed Undetected for Long Enough

Microsoft on Wednesday shared more specifics about the tactics, techniques, and procedures TTPs adopted by the attackers behind the SolarWinds hack to stay under the radar and avoid detection, as cybersecurity companies work towards getting a "clearer picture" of one of the most sophisticated...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/21 11:59 a.m.6 views

Here's How SolarWinds Hackers Stayed Undetected for Long Enough

Microsoft on Wednesday shared more specifics about the tactics, techniques, and procedures TTPs adopted by the attackers behind the SolarWinds hack to stay under the radar and avoid detection, as cybersecurity companies work towards getting a "clearer picture" of one of the most sophisticated...

6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/19 3:4 p.m.37 views

Researchers Discover Raindrop — 4th Malware Linked to the SolarWinds Attack

Cybersecurity researchers have unearthed a fourth new malware strain—designed to spread the malware onto other computers in victims' networks—which was deployed as part of the SolarWinds supply chain attack disclosed late last year. Dubbed "Raindrop" by Broadcom-owned Symantec, the malware joins...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/19 3:4 p.m.4 views

Researchers Discover Raindrop — 4th Malware Linked to the SolarWinds Attack

Cybersecurity researchers have unearthed a fourth new malware strain—designed to spread the malware onto other computers in victims' networks—which was deployed as part of the SolarWinds supply chain attack disclosed late last year. Dubbed "Raindrop" by Broadcom-owned Symantec, the malware joins...

5.9AI score
Exploits0
The Hacker News
The Hacker News
added 2017/04/25 10:42 p.m.14 views

Beware! New Android Malware Infected 2 Million Google Play Store Users

Initially thought to be 600,000 users, the number of Android users who have mistakenly downloaded and installed malware on their devices straight from Google Play Store has reached 2 Million. Yes, about 2 Million Android users have fallen victim to malware hidden in over 40 fake companion guide...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2012/03/16 7:49 p.m.9 views

Dutch News site spread Malware on 100000 Computers

Dutch News site spread Malware on 100000 Computers Dutch popular news site NU.nl appears to be serving Java exploit drive-by malware to users of IE. Nu.nl has approximately one hour long served the Javascript code that attempted to provide visitors to the news site with a trojan to infect. The...

6.7AI score
Exploits0
Rows per page
Query Builder