Security in Color

Blogs & News

Latest in Cybersecurity News

Loading RSS Feed
  • Researchers Find Backdoor in School Management Plugin for WordPressResearchers Find Backdoor in School Management Plugin for WordPress
    Multiple versions of a WordPress plugin by the name of "School Management Pro" harbored a backdoor that could grant an adversary complete control over vulnerable websites. The issue, spotted in premium versions before 9.9.7, has been assigned the CVE identifier CVE-2022-1609 and is rated 10 out of 10 for severity. The backdoor,… Read more »
  • Cisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the WildCisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the Wild
    Cisco on Friday rolled out fixes for a medium-severity vulnerability affecting IOS XR Software that it said has been exploited in real-world attacks. Tracked as CVE-2022-20821 (CVSS score: 6.5), the issue relates to an open port vulnerability that could be abused by an unauthenticated, remote attacker to connect to a… Read more »
  • Hackers Gain Fileless Persistence on Targeted SQL Servers Using a Built-in UtilityHackers Gain Fileless Persistence on Targeted SQL Servers Using a Built-in Utility
    Microsoft on Tuesday warned that it recently spotted a malicious campaign targeting SQL Servers that leverages a built-in PowerShell binary to achieve persistence on compromised systems. The intrusions, which leverage brute-force attacks as an initial compromise vector, stand out for their use of the utility "sqlps.exe," the tech giant said in a… Read more »
  • Web Trackers Caught Intercepting Online Forms Even Before Users Hit SubmitWeb Trackers Caught Intercepting Online Forms Even Before Users Hit Submit
    A new research published by academics from KU Leuven, Radboud University, and the University of Lausanne has revealed that users' email addresses are exfiltrated to tracking, marketing, and analytics domains before such information is submitted and without prior consent. The study involved crawling 2.8 million pages from the top 100 websites, and… Read more »
  • Hackers Trick Users with Fake Windows 11 Downloads to Distribute Vidar MalwareHackers Trick Users with Fake Windows 11 Downloads to Distribute Vidar Malware
    Fraudulent domains masquerading as Microsoft's Windows 11 download portal are attempting to trick users into deploying trojanized installation files to infect systems with the Vidar information stealer malware. "The spoofed sites were created to distribute malicious ISO files which lead to a Vidar info-stealer infection on the endpoint," Zscaler said in a… Read more »
  • Researchers Uncover Rust Supply Chain Attack Targeting Cloud CI PipelinesResearchers Uncover Rust Supply Chain Attack Targeting Cloud CI Pipelines
    A case of software supply chain attack has been observed in the Rust programming language's crate registry that leveraged typosquatting techniques to publish a rogue library containing malware. Cybersecurity firm SentinelOne dubbed the attack "CrateDepression." Typosquatting attacks take place when an adversary mimics the name of a popular package on a public registry in… Read more »
  • Cytrox's Predator Spyware Targeted Android Users with Zero-Day ExploitsCytrox's Predator Spyware Targeted Android Users with Zero-Day Exploits
    Google's Threat Analysis Group (TAG) on Thursday pointed fingers at a North Macedonian spyware developer named Cytrox for developing exploits against five zero-day (aka 0-day) flaws, four in Chrome and one in Android, to target Android users. "The 0-day exploits were used alongside n-day exploits as the developers took advantage… Read more »
  • Microsoft Warns Rise in XorDdos Malware Targeting Linux DevicesMicrosoft Warns Rise in XorDdos Malware Targeting Linux Devices
    A Linux botnet malware known as XorDdos has witnessed a 254% surge in activity over the last six months, according to latest research from Microsoft. The trojan, so named for carrying out denial-of-service attacks on Linux systems and its use of XOR-based encryption for communications with its command-and-control (C2) server,… Read more »
  • Hackers Exploiting VMware Horizon to Target South Korea with NukeSped BackdoorHackers Exploiting VMware Horizon to Target South Korea with NukeSped Backdoor
    The North Korea-backed Lazarus Group has been observed leveraging the Log4Shell vulnerability in VMware Horizon servers to deploy the NukeSped (aka Manuscrypt) implant against targets located in its southern counterpart. "The attacker used the Log4j vulnerability on VMware Horizon products that were not applied with the security patch," AhnLab Security Emergency Response… Read more »
  • QNAP Urges Users to Update NAS Devices to Prevent Deadbolt Ransomware AttacksQNAP Urges Users to Update NAS Devices to Prevent Deadbolt Ransomware Attacks
    Taiwanese network-attached storage (NAS) devices maker QNAP on Thursday warned its customers of a fresh wave of DeadBolt ransomware attacks. The intrusions are said to have targeted TS-x51 series and TS-x53 series appliances running on QTS 4.3.6 and QTS 4.4.1, according to its product security incident response team.  "QNAP urges… Read more »
WordPress RSS Feed Retriever by thememason.com
WordPress RSS Feed Retriever by thememason.com
WordPress RSS Feed Retriever by thememason.com