Tag: security
TP-Link routers are still being bombarded with botnet and malware threats
More than a year after a patch was released, hackers are still competing to compromise vulnerable TP-Link Wi-Fi routers. A report from Fortinet claims half a dozen botnet operators are scanning for vulnerable TP-Link Archer AX21 (AX1800) routers after cybersecurity researchers discovered a high-severity unauthenticated command injection flaw in the…
Read More
A whole new generation of ransomware makers are attempting to shake up the market
The days of the “traditional” Ransomware-as-a-Service (RaaS) model could be numbered as hackers instead pivot towards cheaper, crude, off-the-shelf ransomware variants, new research has said. In a new report analyzing the state of the ransomware community, Sophos says it discovered 19 “junk gun” ransomware variants emerging since June 2023. These…
Read More
Credential spraying from thousands of IP addresses are targeting VPNs, Cisco warns
For a month now, hackers have been mounting a large-scale credential stuffing attack against multiple Virtual Private Network (VPN) instances around the world. At the moment, it’s hard to say who is behind the attack, or what the motives are, but researchers have some clues. As reported by Ars Technica,…
Read More
Billions of Discord chats have been harvested, set to be sold online
A publically-accessible website appears to be selling a colossal database of Discord chats to the highest bidder. The site is called Spy.pet, and claims to have obtained more than four billion public messages, made by roughly 620 million users, logged into more than 14,000 servers. On the surface, it would…
Read More
Security flaw in top SSH client could let hackers recover cryptographic private keys
Multiple versions of the PuTTY SSH client were found to be vulnerable to a high-severity flaw which allowed, in certain scenarios, threat actors to exfiltrate private keys used to generate cryptographic signatures. As a result, the attackers could gain unauthorized access to SSH servers, or could be allowed to sign…
Read More
DDoS attacks saw a huge surge in the first part of 2024, with one particular country badly hit
Distributed denial of service (DDoS) attacks saw a significant increase during the first quarter of 2024, with one European country being particularly badly hit, new research has claimed. The DDoS threat report for 2024 Q1 from Cloudflare found the company’s automated defenses mitigated 4.5 million DDoS attacks in the first…
Read More