Author Archives: Ravie Lakshmanan

Twitter on Friday revealed that a now-patched zero-day bug was used to link phone numbers and emails to user accounts on the social media platform.
“As a result of the vulnerability, if someone submitted an email address or phone number to Twitter’s s… Continue reading Hackers Exploit Twitter Vulnerability to Exposes 5.4 Million Accounts→

Slack said it took the step of resetting passwords for about 0.5% of its users after a flaw exposed salted password hashes when creating or revoking shared invitation links for workspaces.
“When a user performed either of these actions, Slack transmit… Continue reading Slack Resets Passwords After a Bug Exposed Hashed Passwords for Some Users→

A threat actor working to further Iranian goals is said to have been behind a set of damaging cyberattacks against Albanian government services in mid-July 2022.
Cybersecurity firm Mandiant said the malicious activity against a NATO state represented … Continue reading Iranian Hackers Likely Behind Disruptive Cyberattacks Against Albanian Government→

The U.S. Department of Homeland Security (DHS) has warned of critical security vulnerabilities in Emergency Alert System (EAS) encoder/decoder devices.
If left unpatched, the issues could allow an adversary to issue fraudulent emergency alerts over TV… Continue reading Emergency Alert System Flaws Could Let Attackers Transmit Fake Messages→

A nascent service called Dark Utilities has already attracted 3,000 users for its ability to provide command-and-control (C2) services with the goal of commandeering compromised systems.
“It is marketed as a means to enable remote access, command exec… Continue reading A Growing Number of Malware Attacks Leveraging Dark Utilities ‘C2-as-a-Service’→

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a recently disclosed high-severity vulnerability in the Zimbra email suite to its Known Exploited Vulnerabilities Catalog, citing evidence of active exploitation.
The i… Continue reading CISA Adds Zimbra Email Vulnerability to its Exploited Vulnerabilities Catalog→

As many as 29 different router models from DrayTek have been identified as affected by a new critical, unauthenticated remote code execution vulnerability that, if successfully exploited, could lead to full compromise of the devices and unauthorized a… Continue reading Critical RCE Bug Could Let Hackers Remotely Take Over DrayTek Vigor Routers→

An unknown threat actor has been targeting Russian entities with a newly discovered remote access trojan called Woody RAT for at least a year as part of a spear-phishing campaign.
The advanced custom backdoor is said to be delivered via either of two … Continue reading New Woody RAT Malware Being Used to Target Russian Organizations→

A threat actor is said to have “highly likely” exploited a security flaw in an outdated Atlassian Confluence server to deploy a never-before-seen backdoor against an unnamed organization in the research and technical services sector.
The attack, which… Continue reading Hackers Exploited Atlassian Confluence Bug to Deploy Ljl Backdoor for Espionage→

Cisco on Wednesday rolled out patches to address eight security vulnerabilities, three of which could be weaponized by an unauthenticated attacker to gain remote code execution (RCE) or cause a denial-of-service (DoS) condition on affected devices.
Th… Continue reading Cisco Business Routers Found Vulnerable to Critical Remote Hacking Flaws→