Cybersecurity researchers are sounding the alarm over an ongoing campaign that’s leveraging internet-exposed Selenium Grid services for illicit cryptocurrency mining.
Cloud security Wiz is tracking the activity under the name SeleniumGreed. The campaign, which is targeting older versions of Selenium (3.141.59 and prior), is believed to be underway since at least April 2023.
“Unbeknownst to most
CrowdStrike is alerting about an unfamiliar threat actor attempting to capitalize on the Falcon Sensor update fiasco to distribute dubious installers targeting German customers as part of a highly targeted campaign.
The cybersecurity company said it identified what it described as an unattributed spear-phishing attempt on July 24, 2024, distributing an inauthentic CrowdStrike Crash Reporter
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-26 07:06:312024-07-26 07:06:31CrowdStrike Warns of New Phishing Scam Targeting German Customers
Progress Software is urging users to update their Telerik Report Server instances following the discovery of a critical security flaw that could result in remote code execution.
The vulnerability, tracked as CVE-2024-6327 (CVSS score: 9.9), impacts Report Server version 2024 Q2 (10.1.24.514) and earlier.
“In Progress Telerik Report Server versions prior to 2024 Q2 (10.1.24.709), a remote code
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-25 22:09:212024-07-25 22:09:21Feds Warn of North Korean Cyberattacks on US Critical Infrastructure
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-25 21:07:412024-07-25 21:07:41Google’s DeepMind AI takes home silver medal in complex math competition
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-25 20:07:262024-07-25 20:07:26OpenAI’s newly released GPT-4o mini dominates the Chatbot Arena. Here’s why.
A man who allegedly carried out attacks for a North Korean military intelligence agency has been indicted in a conspiracy to hack healthcare firms, NASA, military bases and other entities.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-25 20:07:262024-07-25 20:07:26North Korean Charged in Ransomware Attacks on American Hospitals
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-07-25 20:07:252024-07-25 20:07:25The best silent mouse of 2024: Expert tested and reviewed
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Ongoing Cyberattack Targets Exposed Selenium Grid Services for Crypto Mining
/in General NewsCybersecurity researchers are sounding the alarm over an ongoing campaign that’s leveraging internet-exposed Selenium Grid services for illicit cryptocurrency mining.
Cloud security Wiz is tracking the activity under the name SeleniumGreed. The campaign, which is targeting older versions of Selenium (3.141.59 and prior), is believed to be underway since at least April 2023.
“Unbeknownst to most
The Hacker News – Read More
CrowdStrike Warns of New Phishing Scam Targeting German Customers
/in General NewsCrowdStrike is alerting about an unfamiliar threat actor attempting to capitalize on the Falcon Sensor update fiasco to distribute dubious installers targeting German customers as part of a highly targeted campaign.
The cybersecurity company said it identified what it described as an unattributed spear-phishing attempt on July 24, 2024, distributing an inauthentic CrowdStrike Crash Reporter
The Hacker News – Read More
Critical Flaw in Telerik Report Server Poses Remote Code Execution Risk
/in General NewsProgress Software is urging users to update their Telerik Report Server instances following the discovery of a critical security flaw that could result in remote code execution.
The vulnerability, tracked as CVE-2024-6327 (CVSS score: 9.9), impacts Report Server version 2024 Q2 (10.1.24.514) and earlier.
“In Progress Telerik Report Server versions prior to 2024 Q2 (10.1.24.709), a remote code
The Hacker News – Read More
Feds Warn of North Korean Cyberattacks on US Critical Infrastructure
/in General NewsThe Andariel group is targeting critical defense, aerospace, nuclear, and engineering companies for data theft, the FBI, NSA, and others said.
darkreading – Read More
Google’s DeepMind AI takes home silver medal in complex math competition
/in General NewsThe achievement is noteworthy because AI systems don’t usually fare well with complex math challenges.
Latest news – Read More
Microsoft’s generative search engine weds something new, something old
/in General NewsThe new experience combines AI-powered conversational responses with traditional search results pages. Bing users may find it a bit familiar.
Latest news – Read More
CrowdStrike ‘Updates’ Deliver Malware & More as Attacks Snowball
/in General NewsPhishing and fraud surges during any national news story. This time though, the activity is both more voluminous and more targeted.
darkreading – Read More
OpenAI’s newly released GPT-4o mini dominates the Chatbot Arena. Here’s why.
/in General NewsDespite being a more compact – and much cheaper – version of GPT-4o, the week-old model is blowing competitors out of the water.
Latest news – Read More
North Korean Charged in Ransomware Attacks on American Hospitals
/in General NewsA man who allegedly carried out attacks for a North Korean military intelligence agency has been indicted in a conspiracy to hack healthcare firms, NASA, military bases and other entities.
The post North Korean Charged in Ransomware Attacks on American Hospitals appeared first on SecurityWeek.
SecurityWeek – Read More
The best silent mouse of 2024: Expert tested and reviewed
/in General NewsWe tested some of the best silent mouse options from brands like Logitech and Razer so you can work in complete quiet.
Latest news – Read More