Today, CISA issued a warning about threat actors continuing utilising the Log4Shell (CVE-2021-44228) remote code execution vulnerability to attack VMware Horizon and Unified Access…
Log4Shell
Iranian Government-Linked Hacking Group Mint Sandstorm Attacks US Critical Infrastructure
A new report from Microsoft’s Threat Intelligence team highlights that the Iranian hacking group, Mint Sandstorm, is conducting cyberattacks on US critical infrastructure as…
Over 15 Million Publicly Facing Services at Risk of Cyberattacks
A recent report by cybersecurity company Rezilion has revealed that over 15 million publicly facing services are susceptible to at least one of the…
The Cyberattacks Apocalypse: Last Month’s Most Shocking Attacks
Here are the top cyberattacks from the last month that shook the world. US Marshals service falls victim to a ransomware attack On February…
Microsoft: Kubernetes clusters hacked
The Kinsing malware is currently actively attacking Kubernetes. By exploiting known vulnerabilities in container images and misconfigured, Kinsing malware clusters exposed PostgreSQL containers. These…
Log4j vulnerability is still active a year later.
Amidst mitigation, Log4j one of the worst internet bugs in history is still being exploited. The Apache Software Foundation revealed a vulnerability, sending the…
Attacks by ransomware pose the greatest threat to UK organizations.
18 Incidents in 2022 Will Require Nationally Coordinated Mitigation, according to the Security Agency. According to the country’s cybersecurity agency, Attacks by ransomware against…
The Log4j bug is being used by North Korean Lazarus hackers to attack US energy corporations.
Security researchers have connected the North Korean state-sponsored Lazarus hacking gang to a recent cyber espionage effort targeting energy suppliers in the United States,…
Iranian Hackers Exploiting Unpatched Log4j 2 Bugs to Target Israeli Organizations
Iranian state-sponsored actors are doing all in their power to target Israeli entities using unpatched Log4j systems; this shows how long the vulnerability will…
MERCURY leveraging Log4j 2 vulnerabilities in unpatched systems to target Israeli organizations
The Microsoft Threat Intelligence Center (MSTIC) and Microsoft 365 Defender Research Team have recently discovered Iran-based threat actor MERCURY using SysAid applications’ exploits of…