Servers

Shein’s Android App Caught Transmitting Clipboard Data to Remote Servers

Mar 7, 2023 by iHash Leave a Comment

Mar 07, 2023Ravie LakshmananPrivacy / Data Breach An older version of Shein's Android application suffered from a bug that periodically captured and transmitted clipboard contents to a remote server. The Microsoft 365 Defender Research Team said it discovered the problem in version 7.9.2 of the app that was released on December 16, 2021. The issue has since been addressed as … [Read more...] about Shein’s Android App Caught Transmitting Clipboard Data to Remote Servers

New Wave of Ransomware Attacks Exploiting VMware Bug to Target ESXi Servers

Feb 4, 2023 by iHash Leave a Comment

Feb 04, 2023Ravie LakshmananEnterprise Security / Ransomware VMware ESXi hypervisors are the target of a new wave of attacks designed to deploy ransomware on compromised systems. "These attack campaigns appear to exploit CVE-2021-21974, for which a patch has been available since February 23, 2021," the Computer Emergency Response Team (CERT) of France said in an advisory on … [Read more...] about New Wave of Ransomware Attacks Exploiting VMware Bug to Target ESXi Servers

Stealthy HeadCrab Malware Compromised Over 1,200 Redis Servers

Feb 2, 2023 by iHash Leave a Comment

Feb 02, 2023Ravie LakshmananDatabase Security / Cryptocurrency At least 1,200 Redis database servers worldwide have been corralled into a botnet using an "elusive and severe threat" dubbed HeadCrab since early September 2021. "This advanced threat actor utilizes a state-of-the-art, custom-made malware that is undetectable by agentless and traditional anti-virus solutions to … [Read more...] about Stealthy HeadCrab Malware Compromised Over 1,200 Redis Servers

Microsoft Urges Customers to Secure On-Premises Exchange Servers

Jan 28, 2023 by iHash Leave a Comment

Jan 28, 2023Ravie LakshmananEmail Security / Cyber Threat Microsoft is urging customers to keep their Exchange servers updated as well as take steps to bolster the environment, such as enabling Windows Extended Protection and configuring certificate-based signing of PowerShell serialization payloads. "Attackers looking to exploit unpatched Exchange servers are not going to go … [Read more...] about Microsoft Urges Customers to Secure On-Premises Exchange Servers

Cacti Servers Under Attack as Majority Fail to Patch Critical Vulnerability

Jan 14, 2023 by iHash Leave a Comment

Jan 14, 2023Ravie LakshmananServer Security / Patch Management A majority of internet-exposed Cacti servers have not been patched against a recently patched critical security vulnerability that has come under active exploitation in the wild. That's according to attack surface management platform Censys, which found only 26 out of a total of 6,427 servers to be running a … [Read more...] about Cacti Servers Under Attack as Majority Fail to Patch Critical Vulnerability

Thousands of Citrix Servers Still Unpatched for Critical Vulnerabilities

Dec 29, 2022 by iHash Leave a Comment

Dec 29, 2022Ravie LakshmananServer Security / Citrix Thousands of Citrix Application Delivery Controller (ADC) and Gateway endpoints remain vulnerable to two critical security flaws disclosed by the company over the last few months. The issues in question are CVE-2022-27510 and CVE-2022-27518 (CVSS scores: 9.8), which were addressed by the virtualization services provider on … [Read more...] about Thousands of Citrix Servers Still Unpatched for Critical Vulnerabilities

New IoT RapperBot Malware Targeting Linux Servers via SSH Brute-Forcing Attack

Aug 7, 2022 by iHash Leave a Comment

A new IoT botnet malware dubbed RapperBot has been observed rapidly evolving its capabilities since it was first discovered in mid-June 2022. "This family borrows heavily from the original Mirai source code, but what separates it from other IoT malware families is its built-in capability to brute force credentials and gain access to SSH servers instead of Telnet as implemented … [Read more...] about New IoT RapperBot Malware Targeting Linux Servers via SSH Brute-Forcing Attack

Hackers Targeting VoIP Servers By Exploiting Digium Phone Software

Jul 16, 2022 by iHash Leave a Comment

VoIP phones using Digium's software have been targeted to drop a web shell on their servers as part of an attack campaign designed to exfiltrate data by downloading and executing additional payloads. "The malware installs multilayer obfuscated PHP backdoors to the web server's file system, downloads new payloads for execution, and schedules recurring tasks to re-infect the host … [Read more...] about Hackers Targeting VoIP Servers By Exploiting Digium Phone Software

New ToddyCat Hacker Group on Experts’ Radar After Targeting MS Exchange Servers

Jun 21, 2022 by iHash Leave a Comment

An advanced persistent threat (APT) actor codenamed ToddyCat has been linked to a string of attacks aimed at high-profile entities in Europe and Asia since at least December 2020. The relatively new adversarial collective is said to have commenced its operations by targeting Microsoft Exchange servers in Taiwan and Vietnam using an unknown exploit to deploy the China Chopper … [Read more...] about New ToddyCat Hacker Group on Experts’ Radar After Targeting MS Exchange Servers

A New Golang-based Peer-To-Peer Botnet Targeting Linux Servers

Jun 15, 2022 by iHash Leave a Comment

A new Golang-based peer-to-peer (P2P) botnet has been spotted actively targeting Linux servers in the education sector since its emergence in March 2022. Dubbed Panchan by Akamai Security Research, the malware "utilizes its built-in concurrency features to maximize spreadability and execute malware modules" and "harvests SSH keys to perform lateral movement." The … [Read more...] about A New Golang-based Peer-To-Peer Botnet Targeting Linux Servers

The All-In-One Microsoft Office Professional for Windows 2021 & The Premium Microsoft Office Training Bundle for $69

Scrivener 3: Award-Winning App for Writers (Windows) for $29

Roomie Sophie Smart Body Scale with Free App for $32

Leather AirTag Case – Black for $29

Leather AirTag Case – Tan for $29