Vulnerabilities
-
New Malware Campaign Exploits Cloudflare Tunnels to Deliver Malicious Payloads
A new malware campaign, codenamed SERPENTINE#CLOUD, is exploiting Cloudflare Tunnel subdomains to distribute malicious payloads via phishing emails. This sophisticated attack targets users across multiple regions and employs advanced techniques to evade detection.
-
Water Curse: A New Threat Actor Targeting GitHub to Distribute Malware
Researchers have unveiled Water Curse, a new threat actor leveraging GitHub repositories to distribute malware. The malware enables extensive data exfiltration and remote access, underscoring the risks of supply chain attacks through legitimate platforms.
-
Critical Flaw in Veeam Backup Software Prompt Workforce Update
Veeam Software has issued critical patches for vulnerabilities in its Backup & Replication software, including a major flaw allowing remote code execution. Security experts emphasize the urgency for users to update to safeguard against potential cyber threats.
-
Scania Confirms Cybersecurity Breach Involving Compromised Credentials and Extortion Attempt
Scania has confirmed a cybersecurity breach that involved the theft of insurance claim documents using compromised credentials. The attack was followed by extortion attempts, with the attackers threatening to leak the data unless demands were met.
-
Security Flaw in LangChain’s LangSmith Exposes Users to Data Theft
A security flaw in LangChain’s LangSmith platform has been revealed, allowing hackers to potentially intercept sensitive user data. The vulnerability has now been patched, but researchers caution about the risks associated with such cyber threats.
-
Fraudulent Instagram Ads Target Canadian Bank Customers with AI Deepfakes
Fraudulent Instagram ads impersonating financial institutions BMO and EQ Bank are targeting Canadian consumers with phishing scams involving AI deepfakes. These ads mislead users into providing personal information, prompting a response from affected banks and Meta’s commitment to investigate and remove fraudulent content.
-
New Flodrix Botnet Exploits Vulnerabilities in Langflow Framework
A new botnet campaign exploiting vulnerabilities in the Langflow framework has emerged, allowing attackers to deploy the Flodrix malware. Cybersecurity experts emphasize the urgency of addressing this critical security flaw.
-
CISA Warns of Critical Vulnerability in TP-Link Routers Amid Active Exploitation
CISA has identified a critical vulnerability in TP-Link routers, urging users to take immediate action as evidence of active exploitation emerges. The agency’s guidelines are designed to mitigate the risks associated with this command injection vulnerability, affecting multiple router models.
-
Cyber Crime Crew Scattered Spider Targets US Insurance Companies Amid Ransomware Surge
A rise in ransomware attacks targeting US insurance companies has been attributed to the cybercrime group Scattered Spider, prompting warnings from Google about the necessity for heightened security measures within the industry.
-
Critical Vulnerability Discovered in ASUS Armoury Crate Software
A serious vulnerability in ASUS Armoury Crate software could allow attackers to achieve SYSTEM-level privileges on Windows machines, according to a report detailing the flaw. Users are urged to update their applications to mitigate potential risks.
