Latrodectus is a versatile malware family that infiltrate systems, steal sensitive data, and evades detection. Learn more from Wazuh about Latrodectus malware and how to defend against it using the open-source XDR. […]
Critical Mitel MiCollab Flaw Exposes Systems to Unauthorized File and Admin Access
Cybersecurity researchers have released a proof-of-concept (PoC) exploit that strings together a now-patched critical security flaw impacting Mitel MiCollab with an arbitrary file read zero-day, granting an attacker the ability to access files from susceptible instances.
The critical vulnerability in question is CVE-2024-41713 (CVSS score: 9.8), which relates to a case of insufficient input
The critical vulnerability in question is CVE-2024-41713 (CVSS score: 9.8), which relates to a case of insufficient input
Europol Shuts Down Manson Market Fraud Marketplace, Seizes 50 Servers
Europol on Thursday announced the shutdown of a clearnet marketplace called Manson Market that facilitated online fraud on a large scale.
The operation, led by German authorities, has resulted in the seizure of more than 50 servers associated with the service and the arrest of two suspects. More than 200 terabytes of digital evidence have been collected.
Manson Market (“manson-market[.]pw”) is
The operation, led by German authorities, has resulted in the seizure of more than 50 servers associated with the service and the arrest of two suspects. More than 200 terabytes of digital evidence have been collected.
Manson Market (“manson-market[.]pw”) is
Watch Now: Cyber AI & Automation Summit- All Sessions Available On Demand
SecurityWeek’s Cyber AI & Automation Summit took place on December 4th, as an online event.
The post Watch Now: Cyber AI & Automation Summit- All Sessions Available On Demand appeared first on SecurityWeek.
‘DroidBot’ Android Trojan Targets Banking, Cryptocurrency Applications
The newly discovered DroidBot Android trojan targets 77 banks, cryptocurrency exchanges, and national organizations.
The post ‘DroidBot’ Android Trojan Targets Banking, Cryptocurrency Applications appeared first on SecurityWeek.
50 Servers Linked to Cybercrime Marketplace and Phishing Sites Seized by Law Enforcement
Europol announced an operation targeting a cybercrime marketplace and phishing websites, including the arrests of two suspects.
The post 50 Servers Linked to Cybercrime Marketplace and Phishing Sites Seized by Law Enforcement appeared first on SecurityWeek.
Hackers Target Uyghurs and Tibetans with MOONSHINE Exploit and DarkNimbus Backdoor
A previously undocumented threat activity cluster dubbed Earth Minotaur is leveraging the MOONSHINE exploit kit and an unreported Android-cum-Windows backdoor called DarkNimbus to facilitate long-term surveillance operations targeting Tibetans and Uyghurs.
“Earth Minotaur uses MOONSHINE to deliver the DarkNimbus backdoor to Android and Windows devices, targeting WeChat, and possibly making it a
“Earth Minotaur uses MOONSHINE to deliver the DarkNimbus backdoor to Android and Windows devices, targeting WeChat, and possibly making it a
Bootloader Vulnerability Impacts Over 100 Cisco Switches
More than 100 Cisco products are affected by an NX-OS vulnerability that allows attackers to bypass image signature verification.
The post Bootloader Vulnerability Impacts Over 100 Cisco Switches appeared first on SecurityWeek.
Chemonics International Data Breach Impacts 260,000 Individuals
Development firm Chemonics International has disclosed a year-old data breach impacting over 260,000 people.
The post Chemonics International Data Breach Impacts 260,000 Individuals appeared first on SecurityWeek.
Want to Grow Vulnerability Management into Exposure Management? Start Here!
Vulnerability Management (VM) has long been a cornerstone of organizational cybersecurity. Nearly as old as the discipline of cybersecurity itself, it aims to help organizations identify and address potential security issues before they become serious problems. Yet, in recent years, the limitations of this approach have become increasingly evident.
At its core, Vulnerability Management
At its core, Vulnerability Management