Author Archives: Ravie Lakshmanan

A newly discovered security vulnerability in modern Intel and AMD processors could let remote attackers steal encryption keys via a power side channel attack.
Dubbed Hertzbleed by a group of researchers from the University of Texas, the University of … Continue reading New Hertzbleed Side Channel Attack Affects All Modern AMD and Intel CPUs→

Cloudflare on Tuesday disclosed that it had acted to prevent a record-setting 26 million request per second (RPS) distributed denial-of-service (DDoS) attack last week, making it the largest HTTPS DDoS attack detected to date.
The web performance and … Continue reading Cloudflare Saw Record-Breaking DDoS Attack Peaking at 26 Million Request Per Second→

Microsoft finally released fixes to address an actively exploited Windows zero-day vulnerability known as Follina as part of its Patch Tuesday updates.
Also addressed by the tech giant are 55 other flaws, three of which are rated Critical, 51 are rate… Continue reading Patch Tuesday: Microsoft Issues Fix for Actively Exploited ‘Follina’ Vulnerability→

A new high-severity vulnerability has been disclosed in the Zimbra email suite that, if successfully exploited, enables an unauthenticated attacker to steal cleartext passwords of users sans any user interaction.
“With the consequent access to the vic… Continue reading New Zimbra Email Vulnerability Could Let Attackers Steal Your Login Credentials→

Microsoft has incorporated additional improvements to address the recently disclosed SynLapse security vulnerability in order to meet comprehensive tenant isolation requirements in Azure Data Factory and Azure Synapse Pipelines.
The latest safeguards … Continue reading Technical Details Released for ‘SynLapse’ RCE Vulnerability Reported in Microsoft Azure→

An unpatched security issue in the Travis CI API has left tens of thousands of developers’ user tokens exposed to potential attacks, effectively allowing threat actors to breach cloud infrastructures, make unauthorized code changes, and initiate suppl… Continue reading Unpatched Travis CI API Bug Exposes Thousands of Secret User Access Tokens→

A new covert Linux kernel rootkit named Syslogk has been spotted under development in the wild and cloaking a malicious payload that can be remotely commandeered by an adversary using a magic network traffic packet.
“The Syslogk rootkit is heavily bas… Continue reading New Syslogk Linux Rootkit Lets Attackers Remotely Command It Using “Magic Packets”→

Cybersecurity researchers have detailed the workings of a fully-featured malware loader dubbed PureCrypter that’s being purchased by cyber criminals to deliver remote access trojans (RATs) and information stealers.
“The loader is a .NET executable obf… Continue reading Researchers Detail PureCrypter Loader Cyber Criminals Using to Distribute Malware→

Cybersecurity researchers have disclosed details of two medium-security flaws in Mitel 6800/6900 desk phones that, if successfully exploited, could allow an attacker to gain root privileges on the devices.
Tracked as CVE-2022-29854 and CVE-2022-29855 … Continue reading Researchers Disclose Rooting Backdoor in Mitel IP Phones for Businesses→

The Iranian state-sponsored threat actor tracked under the moniker Lyceum has turned to using a new custom .NET-based backdoor in recent campaigns directed against the Middle East.
“The new malware is a .NET based DNS Backdoor which is a customized ve… Continue reading Iranian Hackers Spotted Using a new DNS Hijacking Malware in Recent Attacks→