A new SSH backdoor is being actively deployed by the Chinese cyber-espionage group Evasive Panda (aka DaggerFly) to compromise network appliances. Fortinet’s FortiGuard Labs uncovered the attack suite, named ELF/Sshdinjector.A!tr, which has been used in persistent, covert intrusions since mid-November 2024. The malware injects itself into the SSH daemon (SSHD), enabling threat actors to establish […]
In a troubling development, Fortinet has disclosed a critical zero-day vulnerability affecting its FortiOS and FortiProxy products. Tracked as CVE-2024-55591 with a CVSS score of 9.3, this vulnerability allows remote attackers to gain super-admin privileges on affected devices, including firewalls and SSL VPNs. The flaw has already been exploited in the wild, highlighting the urgency […]
A critical vulnerability in Windows Lightweight Directory Access Protocol (LDAP), tracked as CVE-2024-49112, has been demonstrated with the release of a proof-of-concept (PoC) exploit. This flaw, disclosed by Microsoft during its December 2024 Patch Tuesday update, carries a CVSS score of 9.8, marking it as a severe risk to enterprise networks. Overview of CVE-2024-49112 This […]
A critical security flaw, CVE-2024-13030, has been discovered in the web management interface of the D-Link DIR-823G router (firmware version 1.0.2B05_20181207). This vulnerability enables attackers to bypass access controls, potentially compromising device security and exposing networks to further exploitation. Vulnerability Overview The vulnerability stems from improper access control in the router’s /HNAP1/ endpoint, which governs […]
Cybersecurity researchers have identified a concerning evolution of the traditional clickjacking attack—dubbed DoubleClickjacking. This sophisticated method bypasses existing defenses, leaving even major websites vulnerable to exploitation and exposing users to potential account takeovers. Here’s a deep dive into what DoubleClickjacking is, how it works, and what can be done to mitigate its risks. What Is […]
Italy recently faced a cyberattack on its Foreign Ministry and key airport websites, attributed to the pro-Russian hacker group Noname057(16). While the attack caused temporary disruptions, there were no significant operational issues, including at Milan’s major airports, Linate and Malpensa. Details of the Attack On Saturday, official websites of the Foreign Ministry and Milan’s airports […]
The infamous Clop ransomware gang has escalated its operations, targeting companies impacted by a Cleo data-theft attack. With a list of 66 companies already announced, the group has issued a chilling ultimatum: victims have 48 hours to respond to ransom demands, or face public exposure of their identities and data. This latest campaign highlights Clop’s […]
🚨 CVE-2024-11477: Critical 7-Zip Vulnerability 🚨 A newly identified vulnerability in 7-Zip allows Remote Code Execution (RCE), posing a serious threat to users of this popular file archiving tool. Here’s what you need to know: 🔍 What is it? CVE-2024-11477 exploits improper handling of certain file formats, enabling attackers to execute arbitrary code by tricking […]
🚨 CVE-2024-43498: A Critical .NET RCE Vulnerability 🚨 A newly identified high-severity vulnerability in .NET 9.0 (CVE-2024-43498) allows Remote Code Execution (RCE), potentially compromising systems. Here’s what you need to know: 🔍 What is it? Improper handling of crafted requests or files lets attackers execute arbitrary code, threatening applications and servers. 💥 Impact: Unauthorized access […]
Cisco, a renowned leader in networking and IT solutions, is facing scrutiny after claims of a significant data breach surfaced. In October, the notorious hacker group IntelBroker alleged that they had gained unauthorized access to Cisco’s systems, exfiltrating sensitive data such as source code, certificates, encryption keys, and confidential documents. While Cisco’s investigation indicates no […]
We specialize in safeguarding businesses from advanced hacker attacks and cyber threats. Our dedicated team of cybersecurity experts employs cutting-edge technology and innovative strategies to protect our clients’ digital assets. We are committed to providing comprehensive security solutions that ensure the safety and integrity of your data, allowing you to operate with confidence in today’s digital landscape. With DefenShield CyberSecurity, your business is in safe hands.