Latest news

Glutton: a new PHP backdoor
Spyware

Glutton: a new PHP backdoor

2 January 2025 securebulletin.com

On April 29, 2024, XLab’s threat analysis system detected unusual activities linked to a new malware named Glutton, designed to...
Read more 0
Urgent: update your .NET installer link, new Microsoft issue
Vulnerability

Urgent: update your .NET installer link, new Microsoft issue

30 December 2024 securebulletin.com

Microsoft has issued an urgent warning to .NET developers regarding the imminent shutdown of two critical domains used for installing...
Read more 0
Curl vulnerability exposes user credentials in redirects
Vulnerability

Curl vulnerability exposes user credentials in redirects

16 December 2024 securebulletin.com

A recently discovered vulnerability in cURL, identified as CVE-2024-11053, poses a significant risk by potentially exposing user credentials during HTTP...
Read more 0
Cryptojacking: protecting Docker and Kubernetes environments from new attacks
Malware

Cryptojacking: protecting Docker and Kubernetes environments from new attacks

15 December 2024 securebulletin.com

Cryptojacking—the unauthorized use of systems to mine cryptocurrency—has seen a troubling surge, with attackers increasingly exploiting misconfigured Docker and Kubernetes...
Read more 0
QNAP NAS vulnerabilities
Vulnerability

QNAP NAS vulnerabilities

9 December 2024 dark6

QNAP NAS systems, widely used for data storage, have been flagged for several critical vulnerabilities that pose significant risks to...
Read more 0
Apache Tomcat vulnerability (CVE-2024-38286)
Vulnerability

Apache Tomcat vulnerability (CVE-2024-38286)

24 September 2024 dark6

A severe vulnerability has emerged in Apache Tomcat, a widely used Java application server. Identified as CVE-2024-38286, this flaw poses...
Read more 0
Windows MiniFilter vulnerability: a threat to EDR security
Vulnerability

Windows MiniFilter vulnerability: a threat to EDR security

18 September 2024 dark6

Endpoint Detection and Response (EDR) solutions are essential for modern cybersecurity defenses. However, research has revealed a vulnerability in Windows...
Read more 0
PRC-Linked cyber actors leveraging massive botnet for malicious activities
Malware

PRC-Linked cyber actors leveraging massive botnet for malicious activities

18 September 2024 dark6

In a joint cybersecurity advisory, the FBI, Cyber National Mission Force (CNMF), and National Security Agency (NSA) have exposed a...
Read more 0
Critical Windows kernel vulnerability disclosed
Vulnerability

Critical Windows kernel vulnerability disclosed

18 September 2024 dark6

Microsoft has issued an urgent warning regarding a critical Windows kernel vulnerability (CVE-2024-37985) that could result in the disclosure of...
Read more 0
Apple iOS 18 patches 32 security flaws
Vulnerability

Apple iOS 18 patches 32 security flaws

17 September 2024 dark6

Apple has released iOS 18, a major software update that addresses a multitude of security vulnerabilities across its operating system....
Read more 0
Critical macOS Calendar vulnerability: zero-click execution of malicious code
Vulnerability

Critical macOS Calendar vulnerability: zero-click execution of malicious code

17 September 2024 dark6

A severe zero-click vulnerability has been discovered within Apple’s macOS Calendar application, posing a significant threat to user security. This...
Read more 0
Cybercriminals exploit legitimate software for insidious attacks
Vulnerability

Cybercriminals exploit legitimate software for insidious attacks

14 September 2024 dark6

Cybercriminals are evolving their tactics, leveraging legitimate software to evade detection and compromise systems. By blending into normal network traffic,...
Read more 0