A serious security threat has been discovered in the file transfer software MOVEit Transfer, which could allow an attacker to steal data from your organization. A zero-day vulnerability discovered by Progress last week is a SQL injection weakness found in…
BBC staff have been warned that a vulnerability in a software tool used by a payroll company could be exploited to put personal data in the hands of cybercriminals. There are a lot of moving parts here, so I’ll give…
A new malware campaign has been discovered that exploits the Satacom downloader, also known as LegionLoader, to distribute browser extensions designed to steal cryptocurrencies. Satacom Downloader, a notorious malware family that emerged in 2019, is known to use DNS server…
June 5, 2023hacker newsSaaS security/cyber threats Over 55% of security professionals report having experienced a SaaS security incident in the past two years, ranging from data breaches and data breaches to SaaS ransomware and malicious apps (see Figures 1 and…
June 5, 2023Ravi LakshmananZero-day/cyberattack Microsoft has formally linked ongoing active exploitation of a critical flaw in the Progress Software MOVEit Transfer application with the threat actors it tracks. lace tempest. “Web shells with data extraction capabilities are often deployed after…
The North Korean regime derives about half of its foreign currency earnings from cyberattacks against cryptocurrencies and other targets, a US diplomat claimed. A senior Biden administration official told Nikkei that attacks by the reclusive state have surged since 2018,…
The UK Cyber Security Council (UKCSC) has announced that it will stop accepting new applicants for the UK’s Certified Cyber Professional (CCP) program from 30 June. The CCP certification will be valid until it expires on December 31, 2026 at…
June 5, 2023Ravi LakshmananMalware/Cyberthreat Cybersecurity researchers have revealed that they observed a spike in TrueBot activity in May 2023. VMware’s Fae Carlisle said, “TrueBot is a downloader Trojan botnet that uses command and control servers to gather information about compromised…
A popular cryptocurrency wallet provider has revealed that some of its customers have been compromised in a campaign that has already cost an estimated tens of millions of dollars. Atomic Wallet, a decentralized wallet that supports over 500 coins and…
June 5, 2023Ravi LakshmananWebsite Security / Magecart Cybersecurity researchers have discovered a new Magecart-style web skimmer campaign in the works aimed at stealing personally identifiable information (PII) and credit card data from e-commerce websites. A notable difference from other Magecart…
All Rights Reserved. Kowatek Blog by IWUCHI
Home | About Us | Disclaimer | Privacy Policy | Contact Us
