Cisco warns of VPN zero-day exploited by ransomware gangs
The medium severity zero-day allows unauthorized remote attackers to conduct brute force attacks against existing accounts
Read More...The medium severity zero-day allows unauthorized remote attackers to conduct brute force attacks against existing accounts
Read More...A consumer signing system crash in April of 2021 resulted in a snapshot of the crashed process
Read More...Tracked as CVE-2023-2868, the vulnerability was first exploited in October 2022 to backdoor ESG appliances and steal data from the compromised systems
Read More...Akira has been using compromised Cisco VPN accounts to breach corporate networks without needing to drop additional backdoors
Read More...More than 1,200 servers were backdoored before administrators installed the patch for the vulnerability
Read More...They primarily attack education, government, manufacturing, and technology and managed service provider sectors
Read More...The company advises organizations to review their environments to confirm the threat actors did not spread to other devices on the network
Read More...Researchers found that Cactus obtains initial access into the victim network by exploiting known vulnerabilities in Fortinet VPN appliances
Read More...Security researchers state the malicious JavaScript file existed on eFile[.]com website for weeks
Read More...Threat actors use AlienFox to collect lists of misconfigured cloud endpoints from security scanning platforms like LeakIX and SecurityTrails
Read More...