#vulnerability-exploitation
#vulnerability-exploitation
[ follow ]
#cybersecurity #ransomware #threat-intelligence #ddos-attacks #cloud-security #phishing #cisa #malware #citrix
Information security
fromTheregister
2 weeks agoSnoops plant info-stealing malware on iPhones, Google warns
DarkSword exploit kit targets iOS 18.4-18.7, exploiting six vulnerabilities to deploy backdoors stealing messages, location data, cryptocurrency wallets, and account credentials from iPhone users.
Information security
fromSecurityWeek
3 weeks agoIn Other News: N8n Flaw Exploited, Slopoly Malware, Interpol Cybercrime Crackdown
Threat actors now exploit vulnerabilities faster than ever, with attacks occurring within days of disclosure, while data theft through identity compromise remains the primary attack objective.
Information security
fromZDNET
3 weeks agoCybercriminals are using AI to attack the cloud faster - and third-party software is the weak link
AI accelerates vulnerability exploitation from weeks to days, forcing organizations to adopt AI-powered automated defenses against cloud attacks targeting weak third-party software.
fromSecurityWeek
4 weeks agoRockwell Vulnerability Allowing Remote ICS Hacking Exploited in Attacks
The vulnerability, related to an insufficiently protected cryptographic key, could allow a remote, unauthenticated attacker to bypass verification and connect to a targeted controller by mimicking an engineering workstation. In a real-world industrial environment, the vulnerability could allow remote attackers to manipulate PLC logic and disrupt manufacturing processes, or even cause physical damage to equipment.
Information security
Privacy professionals
fromTheregister
1 month agoLexisNexis Legal & Professional confirms data breach
LexisNexis Legal & Professional division experienced a data breach affecting legacy servers, with Fulcrumsec claiming responsibility for exploiting a vulnerable React container to access approximately 2 GB of data.
Information security
fromComputerWeekly.com
1 month agoApplication exploitation back in vogue, says IBM cyber unit | Computer Weekly
Cyber attacks exploiting vulnerable public-facing applications increased 44%, surpassing credential abuse attacks, with AI tools accelerating vulnerability discovery and exploitation.
fromDataBreaches.Net
3 months agoUS, Australia say 'MongoBleed' bug being exploited - DataBreaches.Net
U.S. and Australian cyber agencies confirmed that hackers are exploiting a vulnerability that emerged over the Christmas holiday and is impacting data storage systems from the company MongoDB. The issue drew concern on December 25 when a prominent researcher published exploit code for CVE-2025-14847 - a vulnerability MongoDB announced on December 15 and patched on December 19.
Information security
Information security
fromThe Hacker News
3 months agoAmazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure
GRU-linked APT44 ran a 2021–2025 campaign targeting Western critical infrastructure, exploiting misconfigured network edge devices and known software vulnerabilities.
Information security
fromThe Hacker News
4 months agoWeekly Recap: Lazarus Hits Web3, Intel/AMD TEEs Cracked, Dark Web Leak Tool & More
Cyberattacks are increasingly sophisticated, exploiting new vulnerabilities, trusted systems, and encrypted backups to conduct espionage, ransomware, and phishing across diverse targets.
Information security
fromIT Pro
6 months agoForeign states ramp up cyber attacks on EU with AI-driven phishing and DDoS campaigns
EU public administration faces intense state-aligned cyberespionage; phishing drives initial intrusions, hacktivist DDoS dominates incident counts, and vulnerability exploitation remains significant.
[ Load more ]