February 4, 2023 – TheCyberThrone

CERT France alerts on attacks targeting VMware ESXi

CERT-FR warns that threat actors are targeting VMware ESXi servers to deploy ransomware by actively exploiting a bug tracked as CVE-2021-21974 The vulnerability is an OpenSLP heap-overflow flaw in VMware ESXi that can…

PravinKarthik February 4, 2023

Zeroday Exploit in Fortra GoAnywhere MFT

A zero-day vulnerability in Fortra's GoAnywhere MFT managed file transfer application is being actively exploited in the wild. Brian Krebs detailed out first about the flaw . But no public…

PravinKarthik February 4, 2023

MITRE Releases Cyber Resiliency Engineering Framework Navigator

MITRE has released the Cyber Resiliency Engineering Framework (CREF) Navigator, a free visualization tool for engineers designing cyber-resilient systems. Since the cyberattacks are on a constant rise and enterprise looks to…

PravinKarthik February 4, 2023

HeadCrab Malware affects Redis servers

Researchers have spotted a threat actors quietly mining Monero cryptocurrency on open source Redis servers, using a custom-made malware variant called "HeadCrab" that is virtually undetectable by agentless and conventional…

PravinKarthik February 4, 2023