HelloXD Ransomware plants Backdoor
The HelloXD ransomware targeting Windows and Linux systems with the infections also involving the deployment of a backdoor to facilitate persistent remote access to infected hosts. The operators employed the…
Gallium APT Uses Pingpull malware
Unit 42 from Palo Alto discovered a new, difficult-to-detect remote-access malware used by the Gallium advanced persistent threat group. The Gallium APT group is believed to be a Chinese state-sponsored…
Kaiser Permanente discloses data breach
Kaiser Permanente, a health care provider has disclosed a data breach that compromised the information of some 70,000 patients at subsidiary Kaiser Foundation Health Plan of Washington. Protected health information…
Metasploit 6.2.0 New Version
Metasploit is most used penetration testing framework. It helps security teams verify vulnerabilities, manage security assessments, and improve security awareness. Metasploit 6.2.0 includes 138 new modules, 148 enhancements and features,…
HID Mercury – Zero Day Bugs
Researchers have revealed numerous zero-day bugs in Carrier’s LenelS2 access control panels that could enable attackers to physically access nominally secure facilities. The devices are manufactured by HID Mercury, popular…
IBM patches Vulnerabilities in Jackson-Data bind
IBM has fixed 57 vulnerabilities in its Process Mining software, used by enterprises to conduct workflow analysis. The vulnerabilities were inherited from a third-party package, FasterXML jackson-databind, which allows JSON…
Digicert Acquires DNS Made Easy
DigiCert has acquired DNS Made Easy, a provider of managed Domain Name System (DNS) services for enterprises, as well as affiliated brands, including Constellix. The addition of DNS Made Easy…
Lyceum adds .Net backdoor to its arsenal
APT group from Iran dubbed Lyceum , uses a new .NET-based DNS backdoor in a campaign aimed at companies in the energy and telecommunication sectors. The Lyceum APT group campaign…