Cisco Warned on Critical Vulnerabilities in its Routers
Cisco has warned its customers of two critical vulnerabilities in the web management interface of some of its small business routers that could allow a remote attacker to gain access…
Vice Society Ransomware Gang behind Australia FRV attack
The Vice Society ransomware group today claimed responsibility for a December 2022 attack on an Australian state fire department that led to a widespread IT outage. Fire Rescue Victoria warned…
Vidar info Stealer Malware
New campaign from crooks seen spoofing the AnyDesk site to infect endpoints with Vidar stealer. More than 1,300 domains that impersonate the official AnyDesk site were redirected users to a…
MegaCortex Ransomware Decryptor – Freely Available
A new decryptor was released for enabling the victims of the MegaCortex ransomware to recover their encrypted files for free. Bitdefender and the EU’s No More Ransom initiative in cooperation…
JSON Web Token Vulnerability
A security flaw with risk severity of high has been found in the popular JsonWebToken open-source JavaScript package. The attacker could perform RCE on a server verifying a maliciously crafted…
Microsoft Patch Tuesday – January 2023
Microsoft patched 98 CVEs in its January 2023 Patch Tuesday Release, with 11 rated as critical, and 87 rated as important. This month’s update includes patches for: .NET Core 3D…
Pokeman NFT Games Malvertised
Threat actors are seen using rogue websites for Pokemon NFT card games to distribute the NetSupport remote access tool to gain control over the devices of unsuspecting victims. The popularity…
BlueBottle Threat Actor Campaign
Researchers have discovered a new threat group, actively targeting the financial sector in the African continent. The group called Bluebottle makes extensive use of Living off the Land, dual-use tools,…