Author Archives: Ravie Lakshmanan

Multiple versions of a WordPress plugin by the name of “School Management Pro” harbored a backdoor that could grant an adversary complete control over vulnerable websites.
The issue, spotted in premium versions before 9.9.7, has been assigned the CVE … Continue reading Researchers Find Backdoor in School Management Plugin for WordPress→

Cisco on Friday rolled out fixes for a medium-severity vulnerability affecting IOS XR Software that it said has been exploited in real-world attacks.
Tracked as CVE-2022-20821 (CVSS score: 6.5), the issue relates to an open port vulnerability that cou… Continue reading Cisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the Wild→

Google’s Threat Analysis Group (TAG) on Thursday pointed fingers at a North Macedonian spyware developer named Cytrox for developing exploits against five zero-day (aka 0-day) flaws, four in Chrome and one in Android, to target Android users.
“The 0-d… Continue reading Cytrox’s Predator Spyware Targeted Android Users with Zero-Day Exploits→

A Linux botnet malware known as XorDdos has witnessed a 254% surge in activity over the last six months, according to latest research from Microsoft.
The trojan, so named for carrying out denial-of-service attacks on Linux systems and its use of XOR-b… Continue reading Microsoft Warns Rise in XorDdos Malware Targeting Linux Devices→

A case of software supply chain attack has been observed in the Rust programming language’s crate registry that leveraged typosquatting techniques to publish a rogue library containing malware.
Cybersecurity firm SentinelOne dubbed the attack “CrateDe… Continue reading Researchers Uncover Rust Supply Chain Attack Targeting Cloud CI Pipelines→

The North Korea-backed Lazarus Group has been observed leveraging the Log4Shell vulnerability in VMware Horizon servers to deploy the NukeSped (aka Manuscrypt) implant against targets located in its southern counterpart.
“The attacker used the Log4j v… Continue reading Hackers Exploiting VMware Horizon to Target South Korea with NukeSped Backdoor→

Fraudulent domains masquerading as Microsoft’s Windows 11 download portal are attempting to trick users into deploying trojanized installation files to infect systems with the Vidar information stealer malware.
“The spoofed sites were created to distr… Continue reading Hackers Trick Users with Fake Windows 11 Downloads to Distribute Vidar Malware→

Taiwanese network-attached storage (NAS) devices maker QNAP on Thursday warned its customers of a fresh wave of DeadBolt ransomware attacks.
The intrusions are said to have targeted TS-x51 series and TS-x53 series appliances running on QTS 4.3.6 and Q… Continue reading QNAP Urges Users to Update NAS Devices to Prevent Deadbolt Ransomware Attacks→

A novel Bluetooth relay attack can let cybercriminals more easily than ever remotely unlock and operate cars, break open residential smart locks, and breach secure areas.
The vulnerability has to do with weaknesses in the current implementation of Blu… Continue reading New Bluetooth Hack Could Let Attackers Remotely Unlock Smart Locks and Cars→

Google last month addressed a high-severity flaw in its OAuth client library for Java that could be abused by a malicious actor with a compromised token to deploy arbitrary payloads.
Tracked as CVE-2021-22573, the vulnerability is rated 8.7 out of 10 … Continue reading High-Severity Bug Reported in Google’s OAuth Client Library for Java→