Latest Threats
Auto Added by WPeMatico
-
Japanese and U.S. authorities formally attributed the May 2024 cyberattack on DMM Bitcoin, a prominent cryptocurrency exchange, to North Korean cyber actors. The breach resulted in the theft of $308M in digital assets. The agencies stated that the theft is linked to TraderTraitor threat activity, also tracked as Jade Sleet, UNC4899, and Slow Pisces. TraderTraitor…
-
The Clop ransomware gang has struck again, this time targeting 66 organizations by taking advantage of vulnerabilities in Cleo’s file transfer software. This breach shows how crucial it is for businesses to stay on top of their cybersecurity game. How the Attack Happened? Hackers from the Clop group identified weak spots in Cleo’s software, including…
-
Rockstar 2FA, a service criminals use to launch phishing attacks quickly, has become unavailable. FlowerStorm, a competing PhaaS platform, is now seeing increased usage. This suggests that cybercriminals who previously relied on Rockstar 2FA are now turning to FlowerStorm as an alternative. The phishing-as-a-service (PhaaS) toolkit Rockstar 2FA has suffered a significant downfall not…
-
A major security issue has been discovered in Apache Tomcat, a popular tool used by countless organizations for hosting web applications. This vulnerability, named CVE-2024-56337, can allow hackers to run harmful code on affected servers. For businesses using this technology, it’s a serious risk that needs immediate attention. What went wrong? The issue stems from…
-
Fortinet has warned about a critical security vulnerability in its Wireless LAN Manager, FortiWLM, software identified as CVE-2023-349990. With a CVSS score of 9.6, this path traversal vulnerability enables attackers to exploit improper input validation without authentication remotely. The vulnerability allows them to access sensitive files and potentially gain unauthorised administrator privileges, posing a significant…