Attacks

New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now – Go Health Pro

by
New OpenSSH Flaws Enable Man-in-the-Middle and DoS Attacks — Patch Now – Go Health Pro

Feb 18, 2025Ravie LakshmananVulnerability / Network Security Two security vulnerabilities have been discovered in the OpenSSH secure networking utility suite that, if successfully exploited, could result in an active machine-in-the-middle (MitM) and a denial-of-service (DoS) attack, respectively, under certain conditions. The vulnerabilities, detailed by the Qualys Threat Research Unit (TRU), are listed below – CVE-2025-26465 … Read more

Got a Microsoft Teams invite? Storm-2372 Gang Exploit Device Codes in Global Phishing Attacks – Go Health Pro

by
Got a Microsoft Teams invite? Storm-2372 Gang Exploit Device Codes in Global Phishing Attacks – Go Health Pro

Security experts have warned that a cybercriminal group has been running a malicious and inventive phishing campaign since August 2024 to break into organizations across Europe, North America, Africa, and the Middle East. The Russian group, known as Storm-2372, has targeted government and non-governmental organisations (NGOs), as well as firms working in IT, defence, telecoms, … Read more

News alert: Gcore Radar reveals 56% rise in DDoS attacks – gaming industry targeted the most – Go Health Pro

by
News alert: Gcore Radar reveals 56% rise in DDoS attacks – gaming industry targeted the most – Go Health Pro

Luxembourg, Luxembourg, Feb. 11, 2025, CyberNewswire — Gcore, the global edge AI, cloud, network, and security solutions provider, today announced the findings of its Q3-Q4 2024 Radar report into DDoS attack trends. DDoS attacks have reached unprecedented scale and disruption in 2024, and businesses need to act fast to protect themselves from this evolving threat. … Read more

3,000 exposed ASP.NET keys could perform code injection attacks – Go Health Pro

by
3,000 exposed ASP.NET keys could perform code injection attacks – Go Health Pro

More than 3,000 publicly disclosed ASP.NET keys were discovered that attackers can use to launch a ViewState code injection attack that could perform malicious actions on target servers. In a Feb. 6 blog, Microsoft Threat Intelligence explained that developers took these ASP.NET machined keys from publicly accessible resources, such as code documentation and repositories. The … Read more

Akamai warns of active attacks from new Mirai variant – Go Health Pro

by
Akamai warns of active attacks from new Mirai variant – Go Health Pro

A new Mirai-based botnet is causing internet backbone provider Akamai to sound the alarm. Known as Aquabotv3, the malware exploits a vulnerability in a series of Mitel internet-connected phones. The aim of the threat actors, according to Akamai researchers Larry Cashdollar and Kyle Lefton, is to create a platform for denial-of-service attacks. “Aquabot is a … Read more

x