βSECURITY AFFAIRS MALWARE NEWSLETTER β ROUND 10
https://securityaffairs.com/168168/malware/security-affairs-malware-newsletter-round-10.html
https://securityaffairs.com/168168/malware/security-affairs-malware-newsletter-round-10.html
Security Affairs
SECURITY AFFAIRS MALWARE NEWSLETTER β ROUND 10
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.
π1
βFeds indicted two alleged administrators of WWH Club dark web marketplace
https://securityaffairs.com/168177/cyber-crime/feds-indicted-admins-wwh-club-marketplace.html
https://securityaffairs.com/168177/cyber-crime/feds-indicted-admins-wwh-club-marketplace.html
Security Affairs
Feds indicted two alleged administrators of WWH Club dark web marketplace
Russian And Kazakhstani men indicted for operating the Dark Web cybercriminals marketplace WWH Club and other crime forums and markets.
βBeware the Drive-By Download: LummaC2 Stealer and Malicious Chrome Extension Wreak Havoc
https://securityonline.info/beware-the-drive-by-download-lummac2-stealer-and-malicious-chrome-extension-wreak-havoc/
https://securityonline.info/beware-the-drive-by-download-lummac2-stealer-and-malicious-chrome-extension-wreak-havoc/
Daily CyberSecurity
Beware the Drive-By Download: LummaC2 Stealer and Malicious Chrome Extension Wreak Havoc
Stay informed about the latest malware threat: LummaC2 Stealer. Learn how this sophisticated campaign uses DLL side-loading to steal sensitive financial information.
βPredator Spyware Roars Back: New Infrastructure, Evasive Tactics
https://securityonline.info/predator-spyware-roars-back-new-infrastructure-evasive-tactics/
https://securityonline.info/predator-spyware-roars-back-new-infrastructure-evasive-tactics/
Daily CyberSecurity
Predator Spyware Roars Back: New Infrastructure, Evasive Tactics
Learn about the reengineered spyware delivery system of the Predator spyware and its impact on global surveillance.
βFog Ransomware Group Shifts Focus: Financial Sector Now in Crosshairs
https://securityonline.info/fog-ransomware-group-shifts-focus-financial-sector-now-in-crosshairs/
https://securityonline.info/fog-ransomware-group-shifts-focus-financial-sector-now-in-crosshairs/
Daily CyberSecurity
Fog Ransomware Group Shifts Focus: Financial Sector Now in Crosshairs
Learn how the Fog ransomware group is targeting the financial services industry and how one cybersecurity company successfully mitigated an attack.
βAkira Ransomware Exploits SonicWall SSLVPN Flaw (CVE-2024-40766)
https://securityonline.info/akira-ransomware-exploits-sonicwall-sslvpn-flaw-cve-2024-40766/
https://securityonline.info/akira-ransomware-exploits-sonicwall-sslvpn-flaw-cve-2024-40766/
Daily CyberSecurity
Akira Ransomware Exploits SonicWall SSLVPN Flaw (CVE-2024-40766)
Learn about the active exploitation of a critical vulnerability in SonicWall devices by the notorious Akira ransomware affiliates.
βBlindEagle APT Targets Colombian Insurance with BlotchyQuasar RAT
https://securityonline.info/blindeagle-apt-targets-colombian-insurance-with-blotchyquasar-rat/
https://securityonline.info/blindeagle-apt-targets-colombian-insurance-with-blotchyquasar-rat/
Daily CyberSecurity
BlindEagle APT Targets Colombian Insurance with BlotchyQuasar RAT
BlindEagle APT group targets Colombian insurance sector with BlotchyQuasar RAT. Discover how this remote access trojan is compromising systems and monitoring banking activities.
βPoC Exploit Releases for Windows Elevation of Privilege Vulnerability CVE-2024-26230
https://securityonline.info/poc-exploit-releases-for-windows-elevation-of-privilege-vulnerability-cve-2024-26230/
https://securityonline.info/poc-exploit-releases-for-windows-elevation-of-privilege-vulnerability-cve-2024-26230/
Daily CyberSecurity
PoC Exploit Releases for Windows Elevation of Privilege Vulnerability CVE-2024-26230
Get insights into the technical details and PoC exploit of the serious elevation of privilege vulnerability (CVE-2024-26230) in Windows Telephony service
βHAProxy Vulnerability CVE-2024-45506 Under Active Exploit: Urgent Patching Required
https://securityonline.info/haproxy-vulnerability-cve-2024-45506-under-active-exploit-urgent-patching-required/
https://securityonline.info/haproxy-vulnerability-cve-2024-45506-under-active-exploit-urgent-patching-required/
Cybersecurity News
HAProxy Vulnerability CVE-2024-45506 Under Active Exploit: Urgent Patching Required
Stay informed about the latest security vulnerability: CVE-2024-45506 impacting popular load balancing and proxy software HAProxy.
βCritical Kibana Flaws (CVE-2024-37288, CVE-2024-37285) Expose Systems to Arbitrary Code Execution
https://securityonline.info/critical-kibana-flaws-cve-2024-37288-cve-2024-37285-expose-systems-to-arbitrary-code-execution/
https://securityonline.info/critical-kibana-flaws-cve-2024-37288-cve-2024-37285-expose-systems-to-arbitrary-code-execution/
Daily CyberSecurity
Critical Kibana Flaws (CVE-2024-37288, CVE-2024-37285) Expose Systems to Arbitrary Code Execution
URGENT: Critical security advisory for Kibana users. Update to version 8.15.1 now to mitigate vulnerabilities CVE-2024-37288 and CVE-2024-37285.
βProgress Software fixed a maximum severity flaw in LoadMaster
https://securityaffairs.com/168192/uncategorized/progress-software-emergency-loadmaster-flaw.html
https://securityaffairs.com/168192/uncategorized/progress-software-emergency-loadmaster-flaw.html
Security Affairs
Progress Software fixed a maximum severity flaw in LoadMaster
Progress Software released an emergency to address a maximum severity vulnerability in its LoadMaster products.
βDeadPotato β Harnessing Advanced System Tools For Security And Administration
https://kalilinuxtutorials.com/deadpotato/
https://kalilinuxtutorials.com/deadpotato/
Kali Linux Tutorials
DeadPotato - Harnessing Advanced System Tools For Security
The latest iteration of the versatile security tool designed for network administrators and cybersecurity professionals. This version adds new
βWazuh v4.9.0 β Comprehensive Overview Of Latest Enhancements And Fixes
https://kalilinuxtutorials.com/wazuh-v4-9-0/
https://kalilinuxtutorials.com/wazuh-v4-9-0/
Kali Linux Tutorials
Wazuh v4.9.0 - Comprehensive Overview Of Latest
Its latest enhancements and fixes that fortify cybersecurity measures. This version introduces significant improvements across its Manager
βGOAD β A Comprehensive Guide To The Ultimate Active Directory Pentest Lab
https://kalilinuxtutorials.com/goad/
https://kalilinuxtutorials.com/goad/
Kali Linux Tutorials
GOAD - A Comprehensive Guide To The Ultimate Active Directory
GOAD is a pentest active directory LAB project. The purpose of this lab is to give pentesters a vulnerable Active directory environment
βMultiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401
https://securityaffairs.com/168197/malware/geoserver-geotools-flaw-cve-2024-36401-malware.html
https://securityaffairs.com/168197/malware/geoserver-geotools-flaw-cve-2024-36401-malware.html
Security Affairs
Multiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401
Multiple threat actors actively exploited the recently disclosed OSGeo GeoServer GeoTools flaw CVE-2024-36401 in malware-based campaigns.
βECS Logs Collector β Essential Tool For Amazon ECS Troubleshooting
https://kalilinuxtutorials.com/ecs-logs-collector/
https://kalilinuxtutorials.com/ecs-logs-collector/
Kali Linux Tutorials
ECS Logs Collector - Essential Tool For Amazon ECS
This project was created to collect Amazon ECS log files and Operating System log files for troubleshooting Amazon ECS customer support cases.
βLoki: a new private agent for the popular Mythic framework
https://securelist.com/loki-agent-for-mythic/113596/
https://securelist.com/loki-agent-for-mythic/113596/
βTIDRONE APT targets drone manufacturers in Taiwan
https://securityaffairs.com/168210/apt/tidrone-targets-organizations-taiwan.html
https://securityaffairs.com/168210/apt/tidrone-targets-organizations-taiwan.html
Security Affairs
TIDRONE APT targets drone manufacturers in Taiwan
A previously undocumented threat actor tracked TIDRONE targets organizations in military and satellite industries in Taiwan.
βLeveraging eBPF For Advanced Kubernetes Monitoring
https://kalilinuxtutorials.com/leveraging-ebpf-for-advanced-kubernetes-monitoring/
https://kalilinuxtutorials.com/leveraging-ebpf-for-advanced-kubernetes-monitoring/
Kali Linux Tutorials
Leveraging eBPF For Advanced Kubernetes Monitoring
eBPF, or Extended Berkeley Packet Filter, is a technology that lets programs run in the Linux kernel. It was first made for filtering network
β9th September β Threat Intelligence Report
https://research.checkpoint.com/2024/9th-september-threat-intelligence-report/
https://research.checkpoint.com/2024/9th-september-threat-intelligence-report/
Check Point Research
9th September β Threat Intelligence Report - Check Point Research
For the latest discoveries in cyber research for the week of 9th September, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES The German air traffic control agency, Deutsche Flugsicherung, has confirmed a cyberattack that impactedβ¦