Shadowserver – Page 2 – WindowsTechs.com

Atlassian Confluence data-wiping vulnerability exploited

Posted on November 6, 2023 by Zeljka Zorz

Threat actors are trying to exploit CVE-2023-22518, a critical Atlassian Confluence flaw that allows unauthenticated attackers to reset vulnerable instances’ database, Greynoise is observing. The Shadowserver Foundation has also seen 30+ IP addre… Continue reading Atlassian Confluence data-wiping vulnerability exploited→

The removal of Qakbot from infected computers is just the first step

Posted on August 30, 2023 by Zeljka Zorz

The Qakbot botnet has been disrupted by an international law enforcement operation that culminated last weekend, when infected computers started getting untethered from it by specially crafted FBI software. Arranging a widespread Qakbot removal The Qak… Continue reading The removal of Qakbot from infected computers is just the first step→

Zyxel firewalls under attack by Mirai-like botnet

Posted on June 1, 2023 by Zeljka Zorz

CVE-2023-28771, the critical command injection vulnerability affecting many Zyxel firewalls, is being actively exploited by a Mirai-like botnet, and has been added to CISA’s Known Exploited Vulnerabilities (KEV) catalog. About CVE-2023-28771 CVE-… Continue reading Zyxel firewalls under attack by Mirai-like botnet→

Ransomware gangs are exploiting IBM Aspera Faspex RCE flaw (CVE-2022-47986)

Posted on March 30, 2023 by Zeljka Zorz

Attackers are exploiting a critical vulnerability (CVE-2022-47986) in the IBM Aspera Faspex centralized file transfer solution to breach organizations. About CVE-2022-47986 IBM Aspera Faspex is used by organizations to allow employees to quickly and se… Continue reading Ransomware gangs are exploiting IBM Aspera Faspex RCE flaw (CVE-2022-47986)→

Shadowserver: Get free access to timely, critical Internet security data

Posted on October 24, 2022 by Help Net Security

The Shadowserver Foundation fulfills a unique role in the cybersecurity ecosystem by supplying vital security information to Internet defenders and law enforcement at no cost. In this Help Net Security video, Piotr Kijewski, CEO at The Shadowserver Fou… Continue reading Shadowserver: Get free access to timely, critical Internet security data→

No, I Did Not Hack Your MS Exchange Server

Posted on March 28, 2021 by BrianKrebs

New data suggests someone has compromised more than 21,000 Microsoft Exchange Server email systems worldwide and infected them with malware that invokes both KrebsOnSecurity and Yours Truly by name.
Let’s just get this out of the way right now: It wasn… Continue reading No, I Did Not Hack Your MS Exchange Server→

That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards

Posted on November 13, 2018 by BrianKrebs

If you own a domain name that gets decent traffic and you fail to pay its annual renewal fee, chances are this mistake will be costly for you and for others. Lately, neglected domains have been getting scooped up by crooks who use them to set up fake e-commerce sites that steal credit card details from unwary shoppers. Continue reading That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards→