Tag: security
New Androxgh0st botnet targets vulnerabilities in IoT devices and web applications via Mozi integration
Androxgh0st’s integration with Mozi amplifies global risks IoT vulnerabilities are the new battleground for cyberattacks Proactive monitoring is essential to combat emerging botnet threats Researchers have recently identified a major evolution in the Androxgh0st botnet, which has grown more dangerous with the integration of the Mozi botnet’s capabilities. What began…
Read More
TrueNAS device vulnerabilities exposed during hacking competition
TrueNAS recommends hardening systems to mitigate risks Pwn2Own showcases diverse attack vectors on NAS systems Cybersecurity teams earn over $1 million by finding in exploits At the recent Pwn2Own Ireland 2024 event, security researchers identified vulnerabilities in various high-use devices, including network-attached storage NAS devices, cameras, and other connected products.…
Read More
Open source machine learning systems are highly vulnerable to security threats
MLflow identified as most vulnerable open-source ML platform Directory traversal flaws allow unauthorized file access in Weave ZenML Cloud’s access control issues enable privilege escalation risks Recent analysis of the security landscape of machine learning (ML) frameworks has revealed ML software is subject to more security vulnerabilities than more mature…
Read More
Synology patches critical vulnerabilities, urges users to update devices against zero-click attacks
Synology patches critical zero-click vulnerabilities in NAS devices Attackers can exploit vulnerabilities without user interaction $260,000 was awarded to researchers for discovering exploits Synology has recently patched a critical security flaw in its NAS device products which could have allowed hackers to hijack victim units. The company released two advisories…
Read More
BeyondTrust says hackers hit its remote support products
BeyondTrust says it spotted an attack in early December 2024 It found some of its Remote Support SaaS instances were compromised It also found and patched two zero-day flaws BeyondTrust has confirmed it recently suffered a cyberattack after spotting “anomalous behavior” on its network and uncovering some of its Remote…
Read More
Juniper Networks warns Mirai botnet is back and targeting new devices
Juniper Networks warns Mirai botnet is scanning for vulnerable routers The campaign started in mid-December 2024, and includes DDoS attacks Users should tighten up on security, researchers say Operators of the Mirai botnet are back, and looking for easy-to-compromise Session Smart routers to assimilate, experts have warned. Cybersecurity researchers from…
Read More