Exclusive articles:
Bonjour Service on macOS & Windows Exposes Users to Privilege Escalation Attacks
The Bonjour service's mDNSResponder.exe process, crucial for network discovery, poses a privilege escalation risk. Exploiting vulnerabilities in this process could allow an attacker to...
WPS Office Vulnerability Allows Arbitrary Code Execution
APT-C-60, a South Korea-aligned cyberespionage group, exploited a code execution vulnerability (CVE-2024-7262) in WPS Office for Windows to target East Asian countries.
Upon analyzing the...
BlackByte Ransomware Exploits VMware ESXi Flaw to Deploy RAT Tool
BlackByte is a ransomware-as-a-service (RaaS) group that was linked to Conti and emerged in late 2021.
Their sophisticated tactics include exploiting vulnerable drivers, deploying self-propagating...
WinRAR Vulnerability (CVE-2023-38831) Exploited to Attack Windows & Linux
Head Mare, a hacktivist group targeting Russian and Belarusian organizations, uses the CVE-2023-38831 vulnerability to gain initial access, delivering a malicious payload disguised as...
Confluence Exploit Drops Godzilla Fileless Backdoor on Atlassian Servers
A new attack vector exploits the CVE-2023-22527 vulnerability in older Atlassian Confluence versions to deploy the in-memory Godzilla backdoor.
A loader is initially introduced into...
