A very recent malvertising campaign was found impersonating the popular VPN software NordVPN. A malicious advertiser is capturing traffic from Bing searches and redirecting users to a decoy site that looks almost identical to the real one.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-05 10:10:142024-04-05 10:10:14Bing Ad for NordVPN Leads to SecTopRAT
Financial organizations in the Asia-Pacific (APAC) and Middle East and North Africa (MENA) are being targeted by a new version of an “evolving threat” called JSOutProx.
“JSOutProx is a sophisticated attack framework utilizing both JavaScript and .NET,” Resecurity said in a technical report published this week.
“It employs the .NET (de)serialization feature to interact with a core
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-05 09:08:512024-04-05 09:08:51New Wave of JSOutProx Malware Targeting Financial Firms in APAC and MENA
Multiple China-nexus threat actors have been linked to the zero-day exploitation of three security flaws impacting Ivanti appliances (CVE-2023-46805, CVE-2024-21887, and CVE-2024-21893).
The clusters are being tracked by Mandiant under the monikers UNC5221, UNC5266, UNC5291, UNC5325, UNC5330, and UNC5337. Another group linked to the exploitation spree is UNC3886.
The Google Cloud
In January 2024, FortiGuard Labs collected a PDF file written in Portuguese that distributes a multi-functional malware known as Byakugan. While investigating this campaign, a report about it was published.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-05 08:10:502024-04-05 08:10:50Byakugan – The Malware Behind a Phishing Attack
A premium WordPress plugin named LayerSlider, used in over one million sites, is vulnerable to unauthenticated SQL injection, requiring admins to prioritize applying security updates for the plugin.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-05 08:10:502024-04-05 08:10:50Critical Flaw in LayerSlider WordPress Plugin Impacts One Million Sites
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-05 00:06:322024-04-05 00:06:32Web3 Security Specialist Hypernative To Provide Proactive Protection To The Flare Ecosystem
DataStax acquires Langflow, an open-source platform for building retrieval-augmented generation applications, to accelerate enterprise adoption of generative AI and simplify AI app development.Read More
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-04 23:06:292024-04-04 23:06:29DataStax acquires Langflow to accelerate enterprise generative AI app development
A Babuk variant has been involved in at least four attacks on VMware EXSi servers in the last six weeks, in one case demanding $140 million from a Chilean data center company.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-04 22:06:342024-04-04 22:06:34Ivanti Pledges Security Overhaul the Day After 4 More Vulns Disclosed
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-04 22:06:342024-04-04 22:06:34Malicious Latrodectus Downloader Picks Up Where QBot Left Off
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Bing Ad for NordVPN Leads to SecTopRAT
/in General NewsA very recent malvertising campaign was found impersonating the popular VPN software NordVPN. A malicious advertiser is capturing traffic from Bing searches and redirecting users to a decoy site that looks almost identical to the real one.
Cyware News – Latest Cyber News – Read More
New Wave of JSOutProx Malware Targeting Financial Firms in APAC and MENA
/in General NewsFinancial organizations in the Asia-Pacific (APAC) and Middle East and North Africa (MENA) are being targeted by a new version of an “evolving threat” called JSOutProx.
“JSOutProx is a sophisticated attack framework utilizing both JavaScript and .NET,” Resecurity said in a technical report published this week.
“It employs the .NET (de)serialization feature to interact with a core
The Hacker News – Read More
Researchers Identify Multiple China Hacker Groups Exploiting Ivanti Security Flaws
/in General NewsMultiple China-nexus threat actors have been linked to the zero-day exploitation of three security flaws impacting Ivanti appliances (CVE-2023-46805, CVE-2024-21887, and CVE-2024-21893).
The clusters are being tracked by Mandiant under the monikers UNC5221, UNC5266, UNC5291, UNC5325, UNC5330, and UNC5337. Another group linked to the exploitation spree is UNC3886.
The Google Cloud
The Hacker News – Read More
Byakugan – The Malware Behind a Phishing Attack
/in General NewsIn January 2024, FortiGuard Labs collected a PDF file written in Portuguese that distributes a multi-functional malware known as Byakugan. While investigating this campaign, a report about it was published.
Cyware News – Latest Cyber News – Read More
Critical Flaw in LayerSlider WordPress Plugin Impacts One Million Sites
/in General NewsA premium WordPress plugin named LayerSlider, used in over one million sites, is vulnerable to unauthenticated SQL injection, requiring admins to prioritize applying security updates for the plugin.
Cyware News – Latest Cyber News – Read More
Web3 Security Specialist Hypernative To Provide Proactive Protection To The Flare Ecosystem
/in General NewsBy Owais Sultan
Institutions, dApps and users on Flare will now benefit from Hypernative’s industry-leading ecosystem-wide protection suite.
This is a post from HackRead.com Read the original post: Web3 Security Specialist Hypernative To Provide Proactive Protection To The Flare Ecosystem
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
DataStax acquires Langflow to accelerate enterprise generative AI app development
/in General NewsDataStax acquires Langflow, an open-source platform for building retrieval-augmented generation applications, to accelerate enterprise adoption of generative AI and simplify AI app development.Read More
Security News | VentureBeat – Read More
SEXi Ransomware Desires VMware Hypervisors in Ongoing Campaign
/in General NewsA Babuk variant has been involved in at least four attacks on VMware EXSi servers in the last six weeks, in one case demanding $140 million from a Chilean data center company.
darkreading – Read More
Ivanti Pledges Security Overhaul the Day After 4 More Vulns Disclosed
/in General NewsSo far this year, Ivanti has disclosed a total of 11 flaws — many of them critical — in its remote access products.
darkreading – Read More
Malicious Latrodectus Downloader Picks Up Where QBot Left Off
/in General NewsInitial access brokers are using the new downloader malware, which emerged just after QBot’s 2023 disruption.
darkreading – Read More