July 2022 – Page 11 – TheCyberThrone

LPE Exploited from DragonForce Malaysia

Security researchers have spotted a new exploit from hacktivist group DragonForce Malaysia capable of performing Windows servers’ local privilege escalation (LPE) and local distribution router (LDR) actions on Indian servers.…

PravinKarthik July 2, 2022

AWS – TLS 1.2 soon will be the minimum supported Protocol

AWS recently announced that TLS 1.2 is going to become the minimum protocol level for API endpoints. The cloud provider will remove backward compatibility and support for versions 1.0 and 1.1…

PravinKarthik July 2, 2022

Session Manager Backdooring Microsoft Exchange server

Attackers using a new SessionManager backdoor, which can be used to gain persistent, undetected access to emails and even take over the target organization's infrastructure. Researchers reported the emergence of…

PravinKarthik July 1, 2022

CWE Top 25 Most Dangerous Software Weaknesses – 2022

The MITRE shared the list of the 2022 top 25 most common and dangerous weaknesses, it could help organizations to assess internal infrastructure and determine their surface of attack. MITRE…

PravinKarthik July 1, 2022

Google Advanced API Security Management

Google Cloud has announced a preview of Advanced API Security built on Apigee – an application programming interface management platform for detecting and fixing API misconfigurations and thwarting malicious bots.…

PravinKarthik July 1, 2022

Hive Ransomware Decryptor

South Korean cybersecurity agency KISA has released a free decryptor for top most ransomware strain Hive ransomware versions from v1 till v4. The Hive ransomware active since June 2021, it provides…

PravinKarthik July 1, 2022