Palo Alto Networks warned customers to restrict access to their next-generation firewalls because of a potential remote code execution vulnerability in the PAN-OS management interface. […]
Malwarebytes Acquires VPN Provider AzireVPN
Malwarebytes has acquired Sweden-based privacy-focused VPN provider AzireVPN to expand its product offerings.
The post Malwarebytes Acquires VPN Provider AzireVPN appeared first on SecurityWeek.
AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services
The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications, while also deploying the Mozi botnet malware.
“This botnet utilizes remote code execution and credential-stealing methods to maintain persistent access, leveraging unpatched vulnerabilities to infiltrate critical infrastructures,” CloudSEK said in a
“This botnet utilizes remote code execution and credential-stealing methods to maintain persistent access, leveraging unpatched vulnerabilities to infiltrate critical infrastructures,” CloudSEK said in a
Unpatched Vulnerabilities Allow Hacking of Mazda Cars: ZDI
ZDI discloses vulnerabilities in the infotainment system of multiple Mazda car models that could lead to code execution.
The post Unpatched Vulnerabilities Allow Hacking of Mazda Cars: ZDI appeared first on SecurityWeek.
Nokia Says Impact of Recent Source Code Leak Is Very Limited
After the hacker IntelBroker leaked stolen source code, Nokia said the impact of the cybersecurity incident is limited.
The post Nokia Says Impact of Recent Source Code Leak Is Very Limited appeared first on SecurityWeek.
Google’s mysterious ‘search.app’ links leave Android users concerned
The most recent update to the Google Android app has startled users as they notice the mysterious “search.app” links being generated when sharing content and links from the Google app externally. […]
US Prison Sentences for Nigerian Cybercriminals Surge in Recent Months
A significant number of Nigerian cybercriminals have been sent to prison in recent months in the United States, and some of them received lengthy sentences.
The post US Prison Sentences for Nigerian Cybercriminals Surge in Recent Months appeared first on SecurityWeek.
IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools
High-profile entities in India have become the target of malicious campaigns orchestrated by the Pakistan-based Transparent Tribe threat actor and a previously unknown China-nexus cyber espionage group dubbed IcePeony.
The intrusions linked to Transparent Tribe involve the use of a malware called ElizaRAT and a new stealer payload dubbed ApoloStealer on specific victims of interest, Check Point
The intrusions linked to Transparent Tribe involve the use of a malware called ElizaRAT and a new stealer payload dubbed ApoloStealer on specific victims of interest, Check Point
Texas Oilfield Supplier Newpark Hit by Ransomware
Texas-based oilfield supplier Newpark Resources says a ransomware attack disrupted information systems and business applications.
The post Texas Oilfield Supplier Newpark Hit by Ransomware appeared first on SecurityWeek.
HPE Patches Critical Vulnerabilities in Aruba Access Points
HPE this week warned of two critical vulnerabilities in Aruba Networking access points that could lead to unauthenticated command injection.
The post HPE Patches Critical Vulnerabilities in Aruba Access Points appeared first on SecurityWeek.