Secure Bulletin Navigating the cyber sea with knowledge
Home
Latest news

GeoServer RCE vulnerability: a threat to geospatial data infrastructure

9 September 2024  |  dark6  |  Vulnerability

GeoServer, an open-source Java-based server, enables the sharing and management of geospatial data. However, a critical vulnerability (CVE-2024-36401) has emerged, allowing attackers to remotely execute commands and deploy...

>> read more

Fog ransomware extends reach to financial sector

9 September 2024  |  dark6  |  Ransomware

The Fog ransomware, previously targeting educational and recreational sectors, has now shifted its focus to the lucrative finance industry. In a recent attack, threat actors compromised VPN credentials...

>> read more

Bitcoin ATM Scams: A Growing Threat

9 September 2024  |  dark6  |  Cybercrime

Bitcoin ATMs (BTMs) have emerged as a convenient way to buy and sell cryptocurrencies. However, they have also become a hotbed for scammers looking to exploit unsuspecting victims.The...

>> read more

Russian military hackers: targeting critical infrastructure globally

9 September 2024  |  dark6  |  Cybercrime

Intelligence agencies have identified Russian military hackers linked to the Main Intelligence Directorate (GRU), Unit 29155, as responsible for cyberattacks against global targets. These attacks aim to steal...

>> read more

Veeam software vulnerabilities: urgent action required for enhanced cybersecurity

8 September 2024  |  dark6  |  Vulnerability

Veeam Software, a renowned provider of data protection solutions, has recently disclosed the discovery of several critical and high-severity vulnerabilities in multiple products. These vulnerabilities pose significant risks...

>> read more

SonicWall alerts to critical access control flaw actively targeted

6 September 2024  |  dark6  |  Vulnerability

As a cybersecurity expert, I’m here to alert you to a critical vulnerability (CVE-2024-40766) affecting SonicWall Firewall products. This improper access control flaw is actively being exploited in...

>> read more

Persistent backdoors via Linux pluggable authentication modules: a new threat

6 September 2024  |  dark6  |  Spyware

Recent research by the Group-IB Digital Forensics and Incident Response (DFIR) team has revealed a novel technique exploiting Linux’s Pluggable Authentication Modules (PAM) to create persistent backdoors on...

>> read more

Critical Progress LoadMaster vulnerability: unauthenticated code execution

6 September 2024  |  dark6  |  Vulnerability

A severe vulnerability (CVE-2024-7591) has been discovered in the Progress LoadMaster product line, including all releases and the Multi-Tenant (MT) hypervisor. This flaw allows unauthenticated remote attackers to...

>> read more