GeoServer Vulnerability Targeted by Hackers to Deliver Backdoors and Botnet Malware

A recently disclosed security flaw in OSGeo GeoServer GeoTools has been exploited as part of multiple campaigns to deliver cryptocurrency miners, botnet malware such as Condi and JenX, and a known backdoor called SideWalk.
The security vulnerability is a critical remote code execution bug (CVE-2024-36401, CVSS score: 9.8) that could allow malicious actors to take over susceptible instances.
In

The Hacker News – ​Read More

GitHub Actions Vulnerable to Typosquatting, Exposing Developers to Hidden Malicious Code

Threat actors have long leveraged typosquatting as a means to trick unsuspecting users into visiting malicious websites or downloading booby-trapped software and packages.

These attacks typically involve registering domains or packages with names slightly altered from their legitimate counterparts (e.g., goog1e.com vs. google.com).

Adversaries targeting open-source repositories across

The Hacker News – ​Read More

New global standard aims to build security around large language models

The WDTA framework spans the lifecycle of large language models, offering guidelines to manage integration with other systems.

Latest stories for ZDNET in Security – ​Read More

Report: 83% of Organizations Experienced at Least One Ransomware Attack in the Last Year

According to Onapsis, 83% of organizations experienced a ransomware attack in the past year. Of those, 46% experienced four or more attacks, and 14% faced 10 or more. The attacks resulted in at least 24 hours of downtime for 61% of respondents.

Cyware News – Latest Cyber News – ​Read More

MuddyWater Hijacks RMM Software for Espionage

MuddyWater, an Iranian hacker group since 2017, has been using legitimate RMM software to target organizations globally, focusing on government, military, telecom, and oil sectors.

Cyware News – Latest Cyber News – ​Read More

Recent SonicWall Firewall Vulnerability Potentially Exploited in the Wild

SonicWall is warning customers that the recently patched critical vulnerability CVE-2024-40766 may be exploited in the wild.

The post Recent SonicWall Firewall Vulnerability Potentially Exploited in the Wild appeared first on SecurityWeek.

SecurityWeek – ​Read More

OpenStack Ironic Users Urged to Patch Critical Vulnerability

The flaw, discovered by security researchers at Red Hat and G-Research, could lead to unauthorized access to sensitive data through mishandled images processed by qemu-img.

Cyware News – Latest Cyber News – ​Read More

Using Transparency & Sharing to Defend Critical Infrastructure

No organization can single-handedly defend against sophisticated attacks. Governments and private sector entities need to collaborate, share information, and develop defenses against cyber threats

darkreading – ​Read More

Sami Khoury, Head of Canada’s Cyber Agency, Starts New Role in Government

Sami Khoury, the head of Canada’s cyber agency, is moving to a new role as the government’s senior official for cybersecurity after leading the Canadian Centre for Cyber Security (CCCS) since August 2021.

Cyware News – Latest Cyber News – ​Read More

New Android SpyAgent Campaign Steals Crypto Credentials via Image Recognition

A new mobile malware called SpyAgent has been uncovered by McAfee’s Mobile Research Team. This malware targets mnemonic keys used for cryptocurrency wallets by scanning for images containing them on your device.

Cyware News – Latest Cyber News – ​Read More