exposed

BlackLock Ransomware Exposed After Researchers Exploit Leak Site Vulnerability – Go Health Pro

by
BlackLock Ransomware Exposed After Researchers Exploit Leak Site Vulnerability – Go Health Pro

Mar 29, 2025Ravie LakshmananCybercrime / Vulnerability In what’s an instance of hacking the hackers, threat hunters have managed to infiltrate the online infrastructure associated with a ransomware group called BlackLock, uncovering crucial information about their modus operandi in the process. Resecurity said it identified a security vulnerability in the data leak site (DLS) operated by … Read more

EncryptHub malware operations, attack chain exposed – Go Health Pro

by
EncryptHub malware operations, attack chain exposed – Go Health Pro

EncryptHub, an emerging malware threat actor that has compromised more than 600 organizations, had details about its operations and attack chain exposed by researchers.In a Thursday blog post, Outpost24’s KrakenLabs Threat Intelligence Team outlined the inner workings of the malware operation, including its structure and techniques for infecting and managing infected systems.The new information about … Read more

Thousands of exposed GitHub repositories, now private, can still be accessed through Copilot – Go Health Pro

by
Thousands of exposed GitHub repositories, now private, can still be accessed through Copilot – Go Health Pro

Security researchers are warning that data exposed to the internet, even for a moment, can linger in online generative AI chatbots like Microsoft Copilot long after the data is made private. Thousands of once-public GitHub repositories from some of the world’s biggest companies are affected, including Microsoft’s, according to new findings from Lasso, an Israeli cybersecurity … Read more

3,000 exposed ASP.NET keys could perform code injection attacks – Go Health Pro

by
3,000 exposed ASP.NET keys could perform code injection attacks – Go Health Pro

More than 3,000 publicly disclosed ASP.NET keys were discovered that attackers can use to launch a ViewState code injection attack that could perform malicious actions on target servers. In a Feb. 6 blog, Microsoft Threat Intelligence explained that developers took these ASP.NET machined keys from publicly accessible resources, such as code documentation and repositories. The … Read more

BeyondTrust Zero-Day Breach Exposed 17 SaaS Customers via Compromised API Key – Go Health Pro

by
BeyondTrust Zero-Day Breach Exposed 17 SaaS Customers via Compromised API Key – Go Health Pro

Feb 01, 2025Ravie LakshmananVulnerability / Zero-Day BeyondTrust has revealed it completed an investigation into a recent cybersecurity incident that targeted some of the company’s Remote Support SaaS instances by making use of a compromised API key. The company said the breach involved 17 Remote Support SaaS customers and that the API key was used to … Read more