Category: eSecurity Planet

An unsecured database exposed 4.3 billion LinkedIn-derived records, enabling large-scale phishing and identity-based attacks. The post 4.3 Billion Records Exposed in Massive Lead-Generation Data Leak appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the…

Read more →

Operation MoneyMount-ISO uses malicious ISO files to deliver Phantom Stealer to Windows. The post Phantom Stealer Uses ISO Files to Breach Windows Systems appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article:…

Read more →

Apple confirmed two WebKit zero-days exploited in targeted iPhone spyware attacks. The post Apple Zero-Day Exploits Used in Targeted iPhone Spyware Attacks appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: Apple…

Read more →

A fake Leonardo DiCaprio movie torrent is spreading Agent Tesla malware through trusted Windows tools. The post Fake Leonardo DiCaprio Torrent Spreads Agent Tesla Malware appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the…

Read more →

A Windows Defender Firewall flaw lets privileged attackers read sensitive memory, showing how low-severity bugs can still enable data exposure. The post Windows Defender Firewall Bug Leaks Sensitive Memory appeared first on eSecurity Planet. This article has been indexed from…

Read more →

Malicious VS Code extensions hid malware in PNG files, compromising developer environments and supply chains. The post Malicious VS Code Extensions Hide Malware in PNG Files appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read…

Read more →

A new Rust-based ransomware called 01flip is targeting both Windows and Linux systems in coordinated attacks on critical infrastructure. The post Rust-Based 01flip Ransomware Hits Windows and Linux appeared first on eSecurity Planet. This article has been indexed from eSecurity…

Read more →

Fake ChatGPT support sessions are being used to trick macOS users into installing the AMOS infostealer via malicious terminal commands. The post Fake ChatGPT Support Installs AMOS Infostealer on macOS appeared first on eSecurity Planet. This article has been indexed…

Read more →

Cisco-trained hackers led a nation-state espionage campaign against global telecom networks. The post Cisco-Trained Hackers Lead Sophisticated Attacks on Cisco Devices appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: Cisco-Trained Hackers…

Read more →

GitLab patched critical flaws that could enable XSS, denial-of-service attacks, and authentication bypasses. The post Critical GitLab Vulnerabilities Expose DevOps Pipelines appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: Critical GitLab…

Read more →

A Jenkins denial-of-service vulnerability allows attackers to freeze CI/CD pipelines and disrupt build operations. The post Jenkins DoS Vulnerability Lets Attackers Freeze CI/CD Pipelines appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original…

Read more →

Over 644,000 domains are exposed to a critical React flaw now under active exploitation. The post Over 600K Sites Exposed to Critical React Server Components Flaw appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read…

Read more →

Spiderman lets attackers clone European banks in seconds and steal credentials in real time. The post Spiderman Phishing Kit Lets Attackers Clone European Banks in Seconds appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read…

Read more →

A Traefik misconfiguration disabled TLS checks across Kubernetes clusters. The post AISLE Uncovers Traefik Bug That Disabled TLS Verification for Months appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: AISLE Uncovers…

Read more →

Flare found over 10,000 Docker Hub images leaking sensitive credentials. The post Flare Finds 10,000 Docker Hub Images Exposing Sensitive Secrets appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: Flare Finds…

Read more →

A newly disclosed PowerShell flaw allows local code execution. The post Windows PowerShell Flaw Allows Attackers to Execute Malicious Code appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: Windows PowerShell Flaw…

Read more →

Over 40,000 SharePoint- and DocuSign-themed phishing emails reveal the rising threat of cloud impersonation attacks. The post Check Point Warns of 40,000 Finance-Themed Phishing Attacks appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the…

Read more →

Cyberwarfare now resembles Stranger Things: the danger comes from the gaps you can’t see. The post Eleventh Hour: Cyberwarfare Emerges as an Imminent Threat appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original…

Read more →

APT28’s new “LameHug” malware uses LLMs to generate basic commands, a strikingly clumsy move from an otherwise advanced threat group. The post APT28’s Toolkit: AI, Wi-Fi Intrusions, Cloud C2 appeared first on eSecurity Planet. This article has been indexed from…

Read more →

The Broadside Mirai variant exploits vulnerable maritime DVRs to gain stealthy access and threaten global shipping. The post Broadside Mirai Botnet Hijacks Ship Cameras for DDoS appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read…

Read more →