Attacks

New Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ Misconfiguration – Go Health Pro

by
New Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ Misconfiguration – Go Health Pro

Nov 12, 2024Ravie LakshmananVirtualization / Vulnerability Cybersecurity researchers have disclosed new security flaws impacting Citrix Virtual Apps and Desktop that could be exploited to achieve unauthenticated remote code execution (RCE) The issue, per findings from watchTowr, is rooted in the Session Recording component that allows system administrators to capture user activity, and record keyboard and … Read more

Beware Of Network Anomalies And Attacks – Go Health Pro

by
Beware Of Network Anomalies And Attacks – Go Health Pro

Network anomalies and attacks were the most prevalent threat to OT and IoT environments in the second half of 2023, increasing 19% over the previous reporting period. Included here was a 230% surge in vulnerabilities within critical manufacturing. The latest Nozomi Networks Labs OT & IoT Security Report revealed that “network scans” topped the list … Read more

Russian RomCom Attacks Target Ukrainian Government with New SingleCamper RAT Variant – Go Health Pro

by
Russian RomCom Attacks Target Ukrainian Government with New SingleCamper RAT Variant – Go Health Pro

Oct 17, 2024Ravie LakshmananThreat Intelligence / Malware The Russian threat actor known as RomCom has been linked to a new wave of cyber attacks aimed at Ukrainian government agencies and unknown Polish entities since at least late 2023. The intrusions are characterized by the use of a variant of the RomCom RAT dubbed SingleCamper (aka … Read more

Beijing calls for Pakistan to step up security after attacks on Chinese workers – Go Health Pro

by
Beijing calls for Pakistan to step up security after attacks on Chinese workers – Go Health Pro

China has called on Pakistan to protect Chinese workers after a resurgence in militant violence that has targeted some of Beijing’s $60bn of investments in the country. Two Chinese engineers were killed this month in a bomb attack by ethnic separatists on a convoy leaving Karachi’s international airport. Those in the convoy were employees of … Read more

GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks – Go Health Pro

by
GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks – Go Health Pro

A new tax-themed malware campaign targeting insurance and finance sectors has been observed leveraging GitHub links in phishing email messages as a way to bypass security measures and deliver Remcos RAT, indicating that the method is gaining traction among threat actors. “In this campaign, legitimate repositories such as the open-source tax filing software, UsTaxes, HMRC, … Read more

x