Security
Headlines
HeadlinesLatestCVEs

Tag

#botnet

CVE-2022-26482: Security Center

An issue was discovered in Poly EagleEye Director II before 2.2.2.1. os.system command injection can be achieved by an admin.

CVE
Open in Source
#sql#xss#csrf#vulnerability#web#android#mac#microsoft#dos#apache#rce#samba#botnet#log4j#hard_coded_credentials#auth#ssh#telnet#ssl
Tiny Mantis Botnet Can Launch More Powerful DDoS Attacks Than Mirai

By Waqas Mantis Botnet launched 3,000 DDoS attacks in one month using only 5,000 small bots after which Cloudflare dubbed… This is a post from HackRead.com Read the original post: Tiny Mantis Botnet Can Launch More Powerful DDoS Attacks Than Mirai

Mantis Botnet Behind the Largest HTTPS DDoS Attack Targeting Cloudflare Customers

The botnet behind the largest HTTPS distributed denial-of-service (DDoS) attack in June 2022 has been linked to a spate of attacks aimed at nearly 1,000 Cloudflare customers. Calling the powerful botnet Mantis, the web performance and security company attributed it to more than 3,000 HTTP DDoS attacks against its users. The most attacked industry verticals include internet and telecom, media,

Russian ‘Hacktivists’ Are Causing Trouble Far Beyond Ukraine

The pro-Russian group Killnet is targeting countries supporting Ukraine. It has declared "war" against 10 nations.

Threat Roundup for July 1 to July 8

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between July 1 and July 8. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,... [[ This is only the beginning! Please visit the blog for the complete entry ]]

Russia Hackers Abusing BRc4 Red Team Penetration Tool in Recent Attacks

By Deeba Ahmed Palo Alto Networks’ Unit 42 security researchers have discovered that Russian state-sponsored hackers are abusing the latest Brute… This is a post from HackRead.com Read the original post: Russia Hackers Abusing BRc4 Red Team Penetration Tool in Recent Attacks

Spring Data MongoDB hit by another critical SpEL injection flaw

Bug mirrors recent SpEL injection vulnerability that emerged alongside ‘SpringShell’ issue

Microsoft Warns of Cryptomining Malware Campaign Targeting Linux Servers

A cloud threat actor group tracked as 8220 has updated its malware toolset to breach Linux servers with the goal of installing crypto miners as part of a long-running campaign. "The updates include the deployment of new versions of a crypto miner and an IRC bot," Microsoft Security Intelligence said in a series of tweets on Thursday. "The group has actively updated its techniques and payloads

New YTStealer Malware is Hijacking YouTube Channels

By Deeba Ahmed YTStealer is a new info-stealer on the block targeting YouTube content creators to steal authentication tokens and take… This is a post from HackRead.com Read the original post: New YTStealer Malware is Hijacking YouTube Channels