PHP fixes critical RCE flaw impacting all versions for Windows (www.bleepingcomputer.com)
A new PHP for Windows remote code execution (RCE) vulnerability has been disclosed, impacting all releases since version 5.x, potentially impacting a massive number of servers worldwide.
Hackers exploit 2018 ThinkPHP flaws to install ‘Dama’ web shells (www.bleepingcomputer.com)
Chinese threat actors are targeting ThinkPHP applications vulnerable to CVE-2018-20062 and CVE-2019-9082 to install a persistent web shell named Dama.
New Gitloker attacks wipe GitHub repos in extortion scheme (www.bleepingcomputer.com)
Attackers are targeting GitHub repositories, wiping their contents, and asking the victims to reach out on Telegram for more information.
Ukraine says hackers abuse SyncThing tool to steal data (www.bleepingcomputer.com)
Muhstik Botnet Exploiting Apache RocketMQ Flaw to Expand DDoS Attacks (thehackernews.com)
POC exploit code published for critical Apache HugeGraph bug (www.theregister.com)
Dutch political websites hit by cyber attacks as EU voting starts (blog.cloudflare.com)
Cisco addressed Webex flaws used to compromise German government meetings (securityaffairs.com)
Linux version of TargetCompany ransomware focuses on VMware ESXi (www.bleepingcomputer.com)
FBI recovers 7,000 LockBit keys, urges ransomware victims to reach out (www.bleepingcomputer.com)
The FBI urges past victims of LockBit ransomware attacks to come forward after revealing that it has obtained over 7,000 LockBit decryption keys that they can use to recover encrypted data for free.
GitHub - xaitax/TotalRecall: This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots. (github.com)
Vulnerability in Cisco Webex cloud service exposed government authorities, companies (www.helpnetsecurity.com)
New V3B phishing kit targets customers of 54 European banks (www.bleepingcomputer.com)
Russian hackers claim cyberattack on Spanish defence company (www.reuters.com)
Arctic Wolf sniffs out new ransomware variant (www.csoonline.com)
The ransomware payload is designed for an easy and quicker payday over a deep, double-extortive infection.
NIST is finally getting help with the National Vulnerability Database backlog (www.csoonline.com)
NIST is paying Analygence $865,657 to help process incoming CVEs.
Critical incident declared as ransomware attack disrupts multiple London hospitals (therecord.media)
High-risk Atlassian Confluence RCE fixed, PoC available (CVE-2024-21683) (www.helpnetsecurity.com)
Cybercriminals attack banking customers in EU with V3B phishing kit (www.resecurity.com)
8220 Gang Exploiting Oracle WebLogic Server Flaw To Deploy Cryptominer (gbhackers.com)
APT28 targets key networks in Europe with HeadLace malware (securityaffairs.com)
Cybercriminals pose as "helpful" Stack Overflow users to push malware (www.bleepingcomputer.com)
Azure Service Tags tagged as security risk, Microsoft disagrees (www.bleepingcomputer.com)
Security researchers at Tenable discovered what they describe as a high-severity vulnerability in Azure Service Tag that could allow attackers to access customers’ private data.
Exploit for critical Progress Telerik auth bypass released, patch now (www.bleepingcomputer.com)
Researchers have published a proof-of-concept (PoC) exploit script demonstrating a chained remote code execution (RCE) vulnerability on Progress Telerik Report Servers.