A recent security threat has emerged as Chinese hackers have been found exploiting a new zero-day vulnerability in Cisco NX-OS. This hacking activity was reported by SC Media, revealing concerns about potential cyber attacks on an undetermined scale. The zero-day vulnerability in Cisco NX-OS poses a significant risk to organizations and individuals who use this … Read more
Cybersecurity researchers have identified a Chinese cyberespionage campaign targeting a vulnerability in Cisco’s NX-OS software. The threat group Velvet Ant was found deploying malware on Cisco Nexus switches. Sygnia, a cybersecurity firm, discovered the vulnerability and alerted Cisco, who then released updates to address it. The exploit allows attackers to execute arbitrary commands on the … Read more
Cybersecurity researchers have uncovered a complex attack campaign orchestrated by the threat actor Water Sigbin (also known as 8220 Gang), targeting vulnerabilities in Oracle WebLogic Server, specifically CVE-2017-3506 and CVE-2023-21839. The attackers employed these vulnerabilities to plant the XMRig cryptocurrency miner on compromised systems. To avoid detection, Water Sigbin utilized advanced tactics such as code … Read more
Cybersecurity experts have recently discovered that hackers are utilizing a zero-day vulnerability in Citrix software to target critical infrastructure in the United States. This alarming development has raised serious concerns about the security of essential systems and services that the country relies on daily. According to reports, the hackers are exploiting a vulnerability in Citrix … Read more
A proof-of-concept exploit for the ‘Citrix Bleed’ vulnerability, CVE-2023-4966, allows attackers to retrieve authentication session cookies from vulnerable Citrix NetScaler ADC and Gateway devices. Citrix patched the flaw on October 10 but did not provide many details about it. Mandiant revealed that the flaw was exploited in limited attacks as zero day at the end … Read more
The most recent Google spam update, known as the June 2024 update, caused some volatility in search rankings over the Father’s Day weekend. Google Search experienced an indexing error recently, which may have led to the disappearance of image snippets from search results due to quality issues rather than technical issues. Glenn Gabe shared his … Read more
In the year 2021, a cyber espionage actor known as UNC3886, suspected to be linked to China, was discovered targeting strategic organizations by exploiting vulnerabilities in FortiOS and VMware to install backdoors on compromised machines. This threat actor demonstrated a sophisticated and evasive nature by deploying multiple layers of organized persistence to maintain access to … Read more
Citrix has issued a warning to its NetScaler ADC customers regarding a new zero-day exploit that could potentially pose a significant security risk. The company has urged all users of the application delivery controller to take immediate action to protect their systems. The zero-day exploit was discovered by security researchers who found a vulnerability in … Read more
Ransomware attacks targeting VMware ESXi infrastructure follow a set pattern, with threat actors gaining access through phishing attacks and known vulnerabilities, escalating privileges to compromise ESXi hosts or vCenter, and deploying ransomware. Organizations are advised to implement monitoring and logging, robust backup mechanisms, strong authentication measures, network restrictions, and hardening of the environment to mitigate … Read more
A new exploit targeting VMware ESXi Shell Service has been discovered and is circulating on various hacking forums. This vulnerability poses a significant risk to organizations using VMware for their virtual environments, potentially allowing unauthorized access and control over virtual machines. The exploit, which explicitly targets the VMware ESXi Shell Service, was reported in a … Read more