Adobe has fixed critical code execution vulnerabilities in ColdFusion, and Rapid7 warn that hackers have already attacked these issues. Last week, Adobe reported a ColdFusion authentication bypass issue (CVE-2023-29298)...
Author - Volodymyr Krasnogolovy
Genesis Marketplace Infrastructure Sold to Other Criminals
The hacker group behind the Genesis marketplace infrastructure said the platform was sold to an unnamed buyer. Interestingly, just three months ago, US authorities sanctioned Genesis Market, confiscated some of its domains, and...
CISA Gives Companies Free Tools to Protect in the Cloud
The US Cybersecurity and Infrastructure Protection Agency (CISA) has published a white paper with details on free tools and best practices for protecting digital assets after moving to the cloud from on-premises environments. The...
The Researchers Concluded That Only 100 People Are Behind the Majority of Extortions on the Internet
Cybersecurity experts have suggested that a very small number of “elite” hackers – about 100 people – are behind almost all extortions on the Internet. The conclusion was made on the basis of a study...
AIOS WordPress Plugin with Over a Million Installations Stores Passwords in Clear Text
The developers of the All-In-One Security (AIOS) WordPress plugin with over a million installations, have released an additional patch. The fact is that users recently discovered that the plugin remembers passwords in plain text...
Enthusiasts Launched the Windows Update Restored Project to Update Windows 95, 98, NT 4.0 and ME
An independent project, Windows Update Restored, created for fans of retro computers, aims to make it easier to update older versions of Windows, including 95, 98 and NT 4.0. The site provides access to long-lost Windows Update...
Letscall Malware Redirects Victims’ Calls to Hacker Call Center for Voice Phishing
ThreatFabric experts studied the Letscall malware toolkit, which is used for voice phishing in South Korea. An interesting feature of these attacks is that if the victim tries to call the bank, the malware intercepts the call and...
Apps on Google Play with 1.5 Million Installs Were Transferring User Data to China
Two malicious file management apps have been found on Google Play with over 1.5 million installations in total. They collected a lot of user data, far beyond the information they needed for their work, and then sent the collected...
Chinese Hackers Launch SmugX Malware Campaign against European Diplomats
Check Point analysts have discovered a SmugX malware campaign that is linked to the activities of Chinese hack groups Mustang Panda and RedDelta. In these attacks, the attackers use HTML smuggling to hide malicious payloads in...
Microsoft Denies Anonymous Sudan Hackers Stole 30 Million Account Details from Microsoft
Hackers from the Anonymous Sudan group claim that they managed to hack into Microsoft and steal the credentials of 30 million user accounts. The company says that there was no hacking and data leakage. In recent months, the hack...