Russian hacking group Turla, also known as Pensive Ursa, has been targeting Ukraine’s defense sector using the upgraded Kazuar backdoor, raising concerns about national security and the need for robust cybersecurity measures.
A critical remote code execution vulnerability in Apache ActiveMQ servers is being actively exploited by threat actors to distribute ransomware, putting over 3,000 servers at risk.
Wing Security’s new product, “Essential SSPM,” offers capabilities for discovering, assessing, and controlling SaaS usage, addressing the critical need for securing SaaS applications in cloud-based organizations.
The Iranian MuddyWater group, also known as Mango Sandstorm and Static Kitten, has recently targeted two Israeli entities in a spear-phishing campaign, utilizing a multi-stage infection process and incorporating a legitimate remote administration tool, highlighting their ongoing evolution in cyber espionage activities.
The Common Vulnerability Scoring System (CVSS) version 4.0, introduced by FIRST, improves accuracy and granularity in vulnerability assessment, addressing previous limitations and incorporating supplemental metrics.
34 unique vulnerable Windows Driver Model (WDM) and Windows Driver Frameworks (WDF) drivers have been discovered, including those from leading manufacturers of BIOS, PC, and chips, posing a potential risk for exploitation by non-privileged threat actors to gain full control of devices and execute arbitrary code, potentially resulting in firmware erasure or alteration and elevation of operating system privileges.
