Redis Servers Exploited to Deploy Metasploit Meterpreter Backdoor
Penetration Testing
APRIL 10, 2024
Security experts at AhnLab Security Intelligence Center (ASEC) have sounded the alarm on a new wave of attacks targeting Redis servers.
Exploited in the Wild: The Alarming Hitron DVR Vulnerabilities
Penetration Testing
JANUARY 30, 2024
In a concerning development in the realm of cybersecurity, the Akamai Security Intelligence Response Team (SIRT) has uncovered a series of critical vulnerabilities in various Hitron DVR models.
Join 28,000+
Insiders
Sign Up for our Newsletter
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Hackers Exploit Google Ads to Spread Malware Disguised as Popular Software
Penetration Testing
MARCH 31, 2024
A new report released by AhnLab Security Intelligence Center (ASEC) uncovers a disturbing tactic hackers are using to spread malware: they’re leveraging Google Ads tracking features to redirect unsuspecting users to malicious websites.
LockBit Ransomware: The Hidden Threat in Resume Word Files
Penetration Testing
JANUARY 18, 2024
The AhnLab Security Intelligence Center has uncovered that the LockBit ransomware is being spread through malicious Word files disguised as resumes.
Ransomware 
104
104 
French Firms Rocked by Kasbah Hacker?
Krebs on Security
MARCH 2, 2020
An individual thought to be involved has earned accolades from the likes of Apple , Dell , and Microsoft for helping to find and fix security vulnerabilities in their products. In 2018, security intelligence firm HYAS discovered a malware network communicating with systems inside of a French national power company. ”
DNS 298
298 
TargetCompany Ransomware Group Escalates Attacks: New Tools and Persistent Targeting of MS-SQL Servers
Penetration Testing
MAY 1, 2024
The AhnLab Security Intelligence Center (ASEC)... The post TargetCompany Ransomware Group Escalates Attacks: New Tools and Persistent Targeting of MS-SQL Servers appeared first on Penetration Testing.
Report Unveils Cybersecurity Leaks in U.S. Drinking Water Systems
SecureWorld News
NOVEMBER 18, 2024
To mitigate these risks, water utilities should: Prioritize cybersecurity: Implement robust cybersecurity practices, including regular vulnerability assessments, penetration testing, and employee training. Invest in security technology: Utilize advanced security technologies to protect critical infrastructure and data.
Cybersecurity 113
113 
Hackers Weaponize Popular Software Framework for Stealthy Data Theft
Penetration Testing
APRIL 23, 2024
In a disturbing new development, cybersecurity experts at AhnLab Security Intelligence Center (ASEC) have revealed a growing trend of infostealer malware abusing the Electron framework.
Software 85
85 
Mauri Ransomware Exploits Apache ActiveMQ Flaw (CVE-2023-46604)
Penetration Testing
DECEMBER 8, 2024
The AhnLab Security Intelligence Response Center (ASEC) has revealed that threat actors exploiting a critical vulnerability in Apache ActiveMQ, identified as CVE-2023-46604, have begun deploying Mauri ransomware in their attacks....
Ransomware 90
90 
New Trigona Ransomware Threat Actor Uses Mimic Ransomware and BCP Utility in Attacks
Penetration Testing
JANUARY 29, 2024
AhnLab Security Intelligence Center (ASEC) has recently uncovered a concerning development in ransomware attacks. This discovery sheds light... The post New Trigona Ransomware Threat Actor Uses Mimic Ransomware and BCP Utility in Attacks appeared first on Penetration Testing.
Ransomware 91
91 
Attackers Exploit Construction Site Trust, Deliver TrollAgent Malware
Penetration Testing
FEBRUARY 22, 2024
Security experts at the AhnLab Security Intelligence Center (ASEC) have recently uncovered a malware distribution campaign targeting a Korean construction-related association website.
Malware 87
87 
Backdoor Breaches: The Rise of Stealthy Linux System Attacks
Penetration Testing
FEBRUARY 2, 2024
Recently, a detailed report from AhnLab Security Intelligence Center has shed light on the sophisticated strategies employed... The post Backdoor Breaches: The Rise of Stealthy Linux System Attacks appeared first on Penetration Testing.
Crafty Infostealer Campaign Leverages Fake Adobe Reader Installer, Advanced Tricks to Evade Detection
Penetration Testing
MARCH 11, 2024
Security experts from AhnLab SEcurity intelligence Center (ASEC) have uncovered a sophisticated malware campaign where attackers are tricking users into downloading a dangerous infostealer disguised as a legitimate Adobe Reader installation file.
WogRAT Backdoor: The Stealthy Malware Lurking in Online Notepads
Penetration Testing
MARCH 4, 2024
Discovered by the AhnLab Security Intelligence Center (ASEC), WogRAT stands out due to its ability to target both... The post WogRAT Backdoor: The Stealthy Malware Lurking in Online Notepads appeared first on Penetration Testing.
Malware 84
84 
Sophisticated SmokeLoader Campaign Targets Ukrainian Sectors
Penetration Testing
JANUARY 21, 2024
In a recent investigation, researchers at AhnLab Security Intelligence Center (ASEC) have unearthed a sophisticated cyber-espionage campaign targeting various sectors within Ukraine, including the government, public institutions, and key industries.
China-based cyberespionage actor seen targeting South America
CSO Magazine
FEBRUARY 15, 2023
China-based cyberespionage actor DEV-0147 has been observed compromising diplomatic targets in South America, according to Microsoft’s Security Intelligence team. To read this article in full, please click here
Revenge RAT: Unveiling a Tool-Abusing, Fileless Attack
Penetration Testing
FEBRUARY 14, 2024
AhnLab Security Intelligence Center (ASEC) recently sounded the alarm over a cunning Revenge RAT malware campaign.
ViperSoftX Leverages Deep Learning with Tesseract to Exfiltrate Sensitive Information
Penetration Testing
MAY 19, 2024
AhnLab Security Intelligence Center (ASEC) has uncovered a new tactic employed by the notorious ViperSoftX malware.
Aquabotv3: The Mirai-Based Botnet Exploiting CVE-2024-41710 for DDoS Attacks
Penetration Testing
JANUARY 30, 2025
The Akamai Security Intelligence and Response Team (SIRT) has identified Aquabotv3, a new and more sophisticated variant of The post Aquabotv3: The Mirai-Based Botnet Exploiting CVE-2024-41710 for DDoS Attacks appeared first on Cybersecurity News.
DDOS 85
85 
400,000+ Systems Infected: DigitalPulse Proxyware Returns with New Tricks
Penetration Testing
JANUARY 21, 2025
A recent report from the AhnLab Security Intelligence Center (ASEC) detailed the spread of DigitalPulse proxyware via ad The post 400,000+ Systems Infected: DigitalPulse Proxyware Returns with New Tricks appeared first on Cybersecurity News.
Cloud-based security: SECaaS
eSecurity Planet
DECEMBER 30, 2020
To ease these burdens, SECaaS and SOCaaS vendors have emerged as cloud-based security as a service that can collect, analyze, and correlate your information from diverse systems and applications — turning former headaches into actionable information security intelligence. Security as a Service (SECaaS) .
Netflix Phishing Scam: Even the Savviest Streamers Can Fall Victim
Penetration Testing
SEPTEMBER 6, 2024
AhnLab Security Intelligence Center (ASEC) has uncovered a new phishing campaign targeting Netflix users, where cybercriminals are impersonating the popular streaming service to steal sensitive information.
Scams 80
80 
LummaC2 Malware Masquerading as Total Commander Crack to Infect Windows Users
Penetration Testing
FEBRUARY 22, 2025
A recent investigation by the AhnLab Security Intelligence Center (ASEC) has uncovered a malvertising campaign that distributes LummaC2 The post LummaC2 Malware Masquerading as Total Commander Crack to Infect Windows Users appeared first on Cybersecurity News.
Malware 78
78 
Cybercriminals Exploit Legitimate Windows Tool for Cryptojacking
Penetration Testing
SEPTEMBER 10, 2024
The AhnLab Security Intelligence Center (ASEC) has uncovered a concerning trend in cybercrime involving the misuse of Binary Managed Object Files (BMOFs) for the distribution of XMRig, a notorious cryptocurrency... The post Cybercriminals Exploit Legitimate Windows Tool for Cryptojacking appeared first on Cybersecurity News.
JPHP Interpreter Used to Distribute Downloader Malware
Penetration Testing
MARCH 19, 2025
AhnLab Security intelligence Center (ASEC) has recently uncovered a malware campaign utilizing the JPHP interpreter to distribute downloader The post JPHP Interpreter Used to Distribute Downloader Malware appeared first on Cybersecurity News.
Malware 64
64 
LummaC2 Infostealer Malware Spreads via Crack Programs and Phishing
Penetration Testing
JANUARY 13, 2025
Cybersecurity researchers at AhnLab Security Intelligence Center (ASEC) have unveiled a sophisticated distribution tactic for the LummaC2 malware. The post LummaC2 Infostealer Malware Spreads via Crack Programs and Phishing appeared first on Cybersecurity News.
Phishing 73
73 
Stealthy Crypto-Mining Malware Hijacking PCs via USB Drives
Penetration Testing
FEBRUARY 12, 2025
A new report from AhnLab Security Intelligence Center (ASEC) reveals a concerning trend: the distribution of cryptocurrency-mining malware The post Stealthy Crypto-Mining Malware Hijacking PCs via USB Drives appeared first on Cybersecurity News.
Malware 67
67 
Mirai Botnet Exploits Zero-Day Vulnerability CVE-2024-7029 in AVTECH IP Cameras
Penetration Testing
AUGUST 28, 2024
Akamai’s Security Intelligence Response Team (SIRT) has discovered a widespread Mirai botnet campaign exploiting a recently disclosed zero-day vulnerability (CVE-2024-7029) in AVTECH IP cameras.
InnoLoader Malware Evades Detection Posing as Cracked Software
Penetration Testing
JUNE 29, 2024
The AhnLab Security Intelligence Center (ASEC) has issued a warning about a new breed of malware that disguises itself as cracked software and legitimate tools. This malware, dubbed “InnoLoader,” is far from ordinary.
Software 70
70 
Hackers are actively exploiting PHP RCE vulnerability (CVE-2024-4577)
Penetration Testing
JULY 12, 2024
The Akamai Security Intelligence Response Team (SIRT) has observed a... The post Hackers are actively exploiting PHP RCE vulnerability (CVE-2024-4577) appeared first on Cybersecurity News.
ACRStealer Malware Exploits Google Docs as Command-and-Control Infrastructure
Penetration Testing
FEBRUARY 20, 2025
Cybersecurity researchers at AhnLab Security Intelligence Center (ASEC) have identified a new surge in ACRStealer, a stealthy infostealer The post ACRStealer Malware Exploits Google Docs as Command-and-Control Infrastructure appeared first on Cybersecurity News.
Malware 64
64 
cShell DDoS Bot Exploits Poorly Managed Linux SSH Servers
Penetration Testing
DECEMBER 19, 2024
AhnLab Security Intelligence Center (ASEC) has uncovered a new strain of DDoS malware called cShell, which specifically targets poorly managed Linux SSH servers. The malware exploits weak credentials to gain... The post cShell DDoS Bot Exploits Poorly Managed Linux SSH Servers appeared first on Cybersecurity News.
DDOS 60
60 
Kimsuky Group’s New Backdoor, HappyDoor, Raises Cybersecurity Concerns
Penetration Testing
JULY 7, 2024
The AhnLab Security Intelligence Center (ASEC) has issued a warning about a new backdoor malware called HappyDoor, linked to the Kimsuky group, a North Korean state-sponsored threat actor.
Microsoft warns of more disruptive BlueKeep attacks and urges patch installation
Security Affairs
NOVEMBER 8, 2019
Read our latest blog w/ assist from @GossiTheDog & @MalwareTechBlog [link] — Microsoft Security Intelligence (@MsftSecIntel) November 7, 2019. ” Microsoft confirmed that attackers are leveraging an exploit module released for the Metasploit penetration testing platform.
Malware 75
75 
Cybercriminal on Cybercriminal Crime: Ransomware Hijacks CoinMiner
Penetration Testing
JUNE 5, 2024
In an unexpected twist of cybercrime, security researchers at AhnLab Security Intelligence Center (ASEC) have revealed a bizarre case of one criminal gang inadvertently aiding another.
Ransomware 58
58 ModiLoader Malware Leveraging CAB Header Batch Files to Evade Detection
Penetration Testing
JANUARY 21, 2025
The AhnLab Security Intelligence Center (ASEC) warns a novel malware distribution tactic involving the use of Microsoft Windows The post ModiLoader Malware Leveraging CAB Header Batch Files to Evade Detection appeared first on Cybersecurity News.
Malware 54
54 
New MS-SQL Server Attack Campaign Leverages GotoHTTP for Remote Access
Penetration Testing
OCTOBER 5, 2024
Experts from the AhnLab Security Intelligence Center (ASEC) have uncovered new attacks on MS-SQL servers, targeting unsecured accounts and weak passwords.
Best Managed Security Service Providers (MSSPs)
eSecurity Planet
JANUARY 27, 2022
AT&T’s 2018 acquisition of AlienVault significantly expanded its cybersecurity offerings, which now includes managed vulnerability services, strategy and roadmap planning, risk-based cyber posture assessments, penetration testing services, secure remote access, secure web gateway (SGW), network-based firewall, distributed denial of service (..)
Firewall 111
111 
Cybercriminals Exploit Ebooks to Spread AsyncRAT Malware
Penetration Testing
JULY 11, 2024
A recent report from AhnLab Security Intelligence Center (ASEC) reveals new cyberattacks utilizing a novel method to distribute the AsyncRAT remote access trojan (RAT).
Malware 49
49 Urgent Security Alert: HFS Servers Under Attack, Patch Now!
Penetration Testing
JULY 3, 2024
The AhnLab Security Intelligence Center (ASEC) has issued a critical warning for all users of HTTP File Server (HFS): a recently disclosed remote code execution vulnerability (CVE-2024-23692) is actively being exploited by malicious actors.... appeared first on Cybersecurity News.
5 Stages of the Vulnerability Management Lifecycle
eSecurity Planet
JUNE 15, 2023
This could include vulnerability scanners , configuration assessment tools, or security intelligence platforms. You may need to conduct penetration tests and other assessments to ensure that your systems are secure from threats. Improvement Vulnerability management is a cycle.
Cyber threats 105
105 Beware of “How to Fix” Button: New Phishing Emails Trick Users into Executing Malicious Commands
Penetration Testing
JUNE 5, 2024
AhnLab SEcurity Intelligence Center (ASEC) has recently identified a phishing campaign leveraging HTML files distributed via email to execute malicious commands on targeted systems.
Phishing 49
49 From Taiwan to Korea: TIDRONE Threat Actor Targets ERP Software
Penetration Testing
DECEMBER 17, 2024
The AhnLab Security Intelligence Center (ASEC) has uncovered a series of cyberattacks on Korean companies orchestrated by the TIDRONE threat actor. Known for its focus on Taiwanese defense and drone... The post From Taiwan to Korea: TIDRONE Threat Actor Targets ERP Software appeared first on Cybersecurity News.
Software 46
46 
DBatLoader: A Malware Distribution via CMD Files
Penetration Testing
JUNE 27, 2024
AhnLab Security Intelligence Center (ASEC) has issued a warning regarding the re-emergence of the DBatLoader malware, a notorious downloader known for its historical involvement in phishing campaigns.
Malware 46
46 
Let's personalize your content