Tag: threat actor
-
The Register: ‘Dead simple’ hijacking hole in Apache Tomcat ‘now actively exploited in the wild’
Source URL: https://www.theregister.com/2025/03/18/apache_tomcat_java_rce_flaw/ Source: The Register Title: ‘Dead simple’ hijacking hole in Apache Tomcat ‘now actively exploited in the wild’ Feedly Summary: One PUT request, one poisoned session file, and the server’s yours A trivial flaw in Apache Tomcat that allows remote code execution and access to sensitive files is said to be under attack…
-
Hacker News: Lazarus Group deceives developers with 6 new malicious NPM packages
Source URL: https://cyberscoop.com/lazarus-group-north-korea-malicious-npm-packages-socket/ Source: Hacker News Title: Lazarus Group deceives developers with 6 new malicious NPM packages Feedly Summary: Comments AI Summary and Description: Yes Summary: The Lazarus Group has infiltrated the npm registry, introducing six malicious packages designed to deceive software developers, steal credentials, and disrupt their workflows. This incident highlights the ongoing threats…
-
The Register: New kids on the ransomware block channel Lockbit to raid Fortinet firewalls
Source URL: https://www.theregister.com/2025/03/14/ransomware_gang_lockbit_ties/ Source: The Register Title: New kids on the ransomware block channel Lockbit to raid Fortinet firewalls Feedly Summary: It’s March already and you haven’t patched? Researchers are tracking a newly discovered ransomware group with suspected links to LockBit after a series of intrusions were reported starting in January.… AI Summary and Description:…
-
Cisco Talos Blog: Patch it up: Old vulnerabilities are everyone’s problems
Source URL: https://blog.talosintelligence.com/patch-it-up-old-vulnerabilities-are-everyones-problems/ Source: Cisco Talos Blog Title: Patch it up: Old vulnerabilities are everyone’s problems Feedly Summary: Thorsten picks apart some headlines, highlights Talos’ report on an unknown attacker predominantly targeting Japan, and asks, “Where is the victim, and does it matter?” AI Summary and Description: Yes Summary: The text highlights critical security concerns…
-
Cisco Talos Blog: Abusing with style: Leveraging cascading style sheets for evasion and tracking
Source URL: https://blog.talosintelligence.com/css-abuse-for-evasion-and-tracking/ Source: Cisco Talos Blog Title: Abusing with style: Leveraging cascading style sheets for evasion and tracking Feedly Summary: Cascading Style Sheets (CSS) are ever present in modern day web browsing, however its far from their own use. This blog will detail the ways adversaries use CSS in email campaigns for evasion and…
-
Anchore: How to Automate Container Vulnerability Scanning for Harbor Registry with Anchore Enterprise
Source URL: https://anchore.com/blog/how-to-automate-container-vulnerability-scanning-for-harbor-registry-with-anchore-enterprise/ Source: Anchore Title: How to Automate Container Vulnerability Scanning for Harbor Registry with Anchore Enterprise Feedly Summary: Security engineers at modern enterprises face an unprecedented challenge: managing software supply chain risk without impeding development velocity, all while threat actors exploit the rapidly expanding attack surface. With over 25,000 new vulnerabilities in 2023…