Coordinated brute-force campaign targets Apache Tomcat Manager interfaces
The campaign, first observed on June 5, involves brute-force login attempts originating from hundreds of unique IP addresses.
Cybersecurity News - Page 57
ConnectWise rotates digital certificates due to security risks
The company said that this is a preventive action and not related to any recent security incident.
Major police crackdown takes down 20K malicious IPs and domains linked to info-stealers
Dubbed ‘Operation Secure’, the effort ran from January to April 2025 and targeted cybercriminal infrastructure worldwide.
DanaBot malware dismantled after major flaw exposed operation
The vulnerability, dubbed ‘DanaBleed,’ stemmed from a memory leak in the malware's updated command-and-control protocol.
Microsoft fixes zero-day exploited by Stealth Falcon APT in attacks against gov’t and defense sectors
The attack has targeted high-profile entities in the government and defense sectors in Turkey, Qatar, Egypt, and Yemen.
Over 80K Roundcube webmail servers affected by high-severity RCE flaw
Researchers report that an exploit for the vulnerability is already being sold on underground forums.
Vulnerable Wazuh servers targeted by two Mirai botnets
The botnets exploited the flaw to fetch and execute a malicious shell script that serves as a downloader for the main Mirai malware payload.
China-linked hackers target 70+ orgs across wide range of sectors
The researchers noticed overlaps between PurpleHaze and Chinese cyber espionage groups tracked as APT15 and UNC5174.
European Commission launches an alternative to popular DNS services
DNS4EU was created to offer a competitive alternative to widely used public DNS services like Google’s Public DNS and Cloudflare’s DNS.
Scattered Spider cybercrime gang shifts from SIM-swapping to more advanced techniques
The group has evolved from a simple SIM-swapping operation into a “global threat” using sophisticated credential-harvesting campaigns.
Showing elements 561 - 570