Author Archives: Ravie Lakshmanan

Microsoft is warning of a new variant of the srv botnet that’s exploiting multiple security flaws in web applications and databases to install coin miners on both Windows and Linux systems.
The tech giant, which has called the new version Sysrv-K, is … Continue reading New Sysrv Botnet Variant Hijacking Windows and Linux with Crypto Miners→

Image source: z3r00t
The U.S. Cybersecurity and Infrastructure Security Agency on Monday added two security flaws, including the recently disclosed remote code execution bug affecting Zyxel firewalls, to its Known Exploited Vulnerabilities Catalog, cit… Continue reading Watch Out! Hackers Begin Exploiting Recent Zyxel Firewalls RCE Vulnerability→

A first-of-its-kind security analysis of iOS Find My function has identified a novel attack surface that makes it possible to tamper with the firmware and load malware onto a Bluetooth chip that’s executed while an iPhone is “off.”
The mechanism takes… Continue reading Researchers Find Potential Way to Run Malware on iPhone Even When it’s OFF→

An unidentified threat actor has been linked to an actively in-development malware toolkit called the “Eternity Project” that lets professional and amateur cybercriminals buy stealers, clippers, worms, miners, ransomware, and a distributed denial-of-s… Continue reading Researchers Warn of “Eternity Project” Malware Service Being Sold via Telegram→

The European Parliament announced a “provisional agreement” aimed at improving cybersecurity and resilience of both public and private sector entities in the European Union.
The revised directive, called “NIS2” (short for network and information syste… Continue reading Europe Agrees to Adopt New NIS2 Directive Aimed at Hardening Cybersecurity→

A 28-year-old Ukrainian national has been sentenced to four years in prison for siphoning thousands of server login credentials and selling them on the dark web for monetary gain as part of a credential theft scheme.
Glib Oleksandr Ivanov-Tolpintsev, … Continue reading Ukrainian Hacker Jailed for 4-Years in U.S. for Selling Access to Hacked Servers→

SonicWall has published an advisory warning of a trio of security flaws in its Secure Mobile Access (SMA) 1000 appliances, including a high-severity authentication bypass vulnerability.
The weaknesses in question impact SMA 6200, 6210, 7200, 7210, 800… Continue reading SonicWall Releases Patches for New Flaws Affecting SSLVPN SMA1000 Devices→

Google on Thursday announced the creation of a new “Open Source Maintenance Crew” to focus on bolstering the security of critical open source projects.
Additionally, the tech giant pointed out Open Source Insights as a tool for analyzing packages and … Continue reading Google Created ‘Open Source Maintenance Crew’ to Help Secure Critical Projects→

A spear-phishing campaign targeting Jordan’s foreign ministry has been observed dropping a new stealthy backdoor dubbed Saitama.
Researchers from Malwarebytes and Fortinet FortiGuard Labs attributed the campaign to an Iranian cyber espionage threat ac… Continue reading New Saitama backdoor Targeted Official from Jordan’s Foreign Ministry→

Zyxel has moved to address a critical security vulnerability affecting Zyxel firewall devices that enables unauthenticated and remote attackers to gain arbitrary code execution.
“A command injection vulnerability in the CGI program of some firewall ve… Continue reading Zyxel Releases Patch for Critical Firewall OS Command Injection Vulnerability→