In recent weeks, a critical vulnerability known as CVE-2024-22461 has emerged within Dell’s RecoverPoint for Virtual Machines. This command injection vulnerability could allow attackers to execute arbitrary commands on affected systems. Discovered in late November 2024, it has raised serious concerns among users, especially those in sectors like finance, healthcare, and critical infrastructure. The risk…
The Apache Host Header Stored XSS Vulnerability, identified as CVE-2024-11986, is a recently uncovered security flaw impacting Apache HTTP Server versions 2.4.51 and 2.4.52. This vulnerability allows attackers to exploit the Host header in HTTP requests, injecting malicious scripts that can lead to cross-site scripting (XSS) attacks. Reported on December 6, 2024, the flaw poses…
Iran-Linked IOCONTROL Malware Threatening IoT and OT Environments Iran-affiliated threat actors are now associated with new custom malware called IOCONTROL. This malware specifically targets IoT and operational technology (OT) environments, particularly in Israel and the United States. The cybersecurity company Claroty has identified this significant threat, noting its capability to infiltrate various devices used in…
The ComfyUI-Ace Code Injection Vulnerability, known as CVE-2024-21577, poses a serious threat to users relying on the platform. Discovered on December 13, 2024, this vulnerability exists within the ACE_ExpressionEval node. This specific node includes an unsafe eval() function, which permits arbitrary user input. Consequently, this opens doors for attackers to inject malicious code, leading to…
The recent discovery of a vulnerability in the MainWP Child WordPress plugin, identified as CVE-2024-10783, has raised significant concerns in the WordPress community. This security flaw allows unauthorized users to escalate their privileges to administrator level. Undoubtedly, this is troubling news for anyone managing multiple WordPress sites using this plugin. This issue primarily affects versions…
A critical vulnerability known as CVE-2024-9290 has emerged in the Super Backup & Clone – Migrate for WordPress plugin. This vulnerability allows unauthenticated users to upload arbitrary files, posing significant risks to website security. Disclosed on December 12, 2024, this flaw stems from inadequate file type validation and a missing capability check in the ibk_restore_migrate_check()…
Understanding PUMAKIT: A New Linux Rootkit Recent findings by cybersecurity researchers reveal a new Linux rootkit called PUMAKIT. This rootkit is particularly dangerous because it can escalate privileges, hide files and directories, and conceal itself from system tools. Most notably, PUMAKIT employs advanced techniques to evade detection, making it one of the most sophisticated threats…
The U.S. Department of Justice (DoJ) has made headlines with a significant crackdown on cybercrime. On Thursday, they announced the closure of an illicit marketplace named Rydox, which operated under the domains “rydox.ru” and “rydox.cc.” This marketplace was notorious for selling stolen personal information, access devices, and tools used for cybercrime and fraud. Law Enforcement…
Vodnilna profesionalna mrežna platforma se sooča z novo večjo kršitvijo varnosti podatkov, kar ponovno izpostavlja pomen kibernetske varnosti. Po poročilih, ki krožijo na temnem spletu, so hekerji trdili, da so dostopali do profesionalnih in osebnih podatkov 50.000 uporabnikov LinkedIn-a ter jih razkrili. Ta kršitev je vzbudila skrbi o varnostnih ukrepih platforme in morebitnih tveganjih za…
Gamaredon Unveils New Android Spyware: BoneSpy and PlainGnome The Russia-linked state-sponsored threat actor known as Gamaredon has progressed in its techniques. This time, the group has been linked to two new Android spyware tools called BoneSpy and PlainGnome. This marks a significant development, as it is the first time this adversary has used mobile-only malware…