Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

The Kinsing threat actors are actively exploiting a critical security flaw in vulnerable Apache ActiveMQ servers to infect Linux systems with cryptocurrency miners and rootkits. "Once Kinsing infects a system, it deploys a cryptocurrency mining script that exploits the host's resources to mine...

DDoS IRC Bot Malware Spreading Through Korean WebHard Platforms

An IRC Internet Relay Chat bot strain programmed in GoLang is being used to launch distributed denial-of-service DDoS attacks targeting users in Korea. "The malware is being distributed under the guise of adult games," researchers from AhnLab's Security Emergency-response Center ASEC said in a ne...

Palo Alto GlobalProtect SSL VPN remote code execution vulnerability-vulnerability warning-the black bar safety net

One, Foreword Palo Alto GlobalProtect SSL VPN is the enterprise commonly used the SSLVPN products, recently disclosed a remote code execution vulnerability. Second, the vulnerability profile Palo Alto GlobalProtect SSL VPN in/sslmgr position exists format string vulnerability there is a remote co...

SRCMS Cross-Site Request Forgery Vulnerability (CNVD-2019-08317)

SRCMS is a security emergency response and defect management software, dedicated to providing large, medium and small businesses and organizations with "the most agile, secure and beautiful security emergency response center building solutions to help companies build their own security emergency...