Exploits

Mirai Variant Murdoc_Botnet Exploits AVTECH IP Cameras and Huawei Routers – Go Health Pro

by
Mirai Variant Murdoc_Botnet Exploits AVTECH IP Cameras and Huawei Routers – Go Health Pro

Jan 21, 2025Ravie LakshmananBotnet / Vulnerability Cybersecurity researchers have warned of a new large-scale campaign that exploits security flaws in AVTECH IP cameras and Huawei HG532 routers to rope the devices into a Mirai botnet variant dubbed Murdoc_Botnet. The ongoing activity “demonstrates enhanced capabilities, exploiting vulnerabilities to compromise devices and establish expansive botnet networks,” Qualys … Read more

Code found online exploits LogoFAIL to install Bootkitty Linux backdoor – Go Health Pro

by
Code found online exploits LogoFAIL to install Bootkitty Linux backdoor – Go Health Pro

Normally, Secure Boot prevents the UEFI from running all subsequent files unless they bear a digital signature certifying those files are trusted by the device maker. The exploit bypasses this protection by injecting shell code stashed in a malicious bitmap image displayed by the UEFI during the boot-up process. The injected code installs a cryptographic key … Read more

Ransomware Exploits Cloud Services | Neuways – Go Health Pro

by
Ransomware Exploits Cloud Services | Neuways – Go Health Pro

Cloud services have become a critical enabler for modern businesses, offering scalable, secure storage and processing capabilities. However, these same services are increasingly being exploited by ransomware groups as tools for both compromising systems and exfiltrating sensitive data. Ransomware exploits cloud services A recent report from SentinelLabs, The State of Cloud Ransomware in 2024, highlights … Read more

VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware – Go Health Pro

by
VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware – Go Health Pro

Nov 06, 2024Ravie LakshmananSaaS Security / Threat Detection An ongoing threat campaign dubbed VEILDrive has been observed taking advantage of legitimate services from Microsoft, including Teams, SharePoint, Quick Assist, and OneDrive, as part of its modus operandi. “Leveraging Microsoft SaaS services — including Teams, SharePoint, Quick Assist, and OneDrive — the attacker exploited the trusted … Read more

Adload malware exploits flaw to bypass macOS protections for Safari – Go Health Pro

by
Adload malware exploits flaw to bypass macOS protections for Safari – Go Health Pro

Microsoft Threat Intelligence on Oct. 17 warned security teams that Microsoft Defender for Endpoint detected that Adload malware exploited a previously patched macOS vulnerability. Referred to as the HM Surf vulnerability, the flaw — CVE-2024-44133 — lets attackers bypass the transparency, consent, and control (TCC) protections for the Safari browser directory, giving attackers unlimited access … Read more