April 26, 2023Rabbi LakshmananLinux / Cyber threats Chinese nation-state group called alloy taurus uses a Linux version of a backdoor called PingPull and a new undocumented tool codenamed Sword2033. This is according to Palo Alto Networks Unit 42 research, which…
VMware has addressed multiple security vulnerabilities in its Workstation and Fusion products. The vulnerabilities identified as CVE-2023-20869, CVE-2023-20870, CVE-2023-20871, and CVE-2023-20872 have been privately reported to VMware and have a CVSS v3.x score of 7.3 9.3. One of the flaws,…
April 26, 2023Rabbi Lakshmanan The prolific Iranian nation-state group known as the charming kitten Targeted multiple victims in the United States, Europe, the Middle East, and India with a new malware called Bellachaoadded to the ever-growing list of custom tools.…
April 26, 2023Rabbi LakshmananCyber Threat / APT Group Advanced Persistent Threat (APT) group called dodging panda has been observed targeting international non-governmental organizations (NGOs) in mainland China, using malware distributed through legitimate application update channels such as Tencent QQ. The…
The Quadrilateral Security Dialogue (Quad) is reportedly working on a new information-sharing agreement that will help its four members improve cyber resilience and response to critical infrastructure (CNI) threats. According to the group’s four members – the US, Japan, India…
April 26, 2023Rabbi LakshmananServer security/vulnerability The maintainers of the Apache Superset open source data visualization software have released a fix to plug in an insecure default configuration that could lead to remote code execution. Vulnerabilities tracked as CVE-2023-27524 (CVSS score:…
Security researchers have discovered a high-severity vulnerability in the Service Location Protocol (SLP). This vulnerability could start as one of the largest DDoS amplification attacks ever seen. BitSight and Curesec state that bug CVE-2023-29552, classified under CVSS 8.6, could allow…
April 26, 2023Rabbi LakshmananVirtual Machine / Cyber Security VMware has released updates to resolve multiple security flaws affecting Workstation and Fusion software. The most severe of these could allow a local attacker to execute code. The vulnerability, tracked as CVE-2023-20869…
Google analyzed 81 potential attack vectors and identified 10 vulnerabilities in Intel Trust Domain Extensions (TDX) after a nine-month audit process. TDX is a type of “confidential computing” technology built to provide security while processing sensitive data in a hardware-isolated…
A new Iranian threat actor called Educated Manticore has been observed targeting Israeli individuals with new tactics and tools. Security experts at Check Point Research (CPR) explained their findings in a new advisory released today. This advisory associated Educated Manticore…
All Rights Reserved. Kowatek Blog by IWUCHI
Home | About Us | Disclaimer | Privacy Policy | Contact Us
