Hackers Compromising IIS Servers to Deploy BadIIS Malware

A widespread campaign targeting Microsoft Internet Information Services (IIS) servers to deploy the BadIIS malware, a tool used for search engine optimization (SEO) fraud and malicious content injection. The campaign, attributed to the Chinese-speaking hacking group DragonRank, has affected over…

New Phishing Attacks Abuses Webflow CDN & CAPTCHAs to Steal Credit Card details

itsecuritynews.info - 13/Feb 13:05

Netskope Threat Labs has uncovered a sophisticated phishing campaign targeting users across various industries, including technology, manufacturing,...

Hackers exploit Cityworks RCE bug to breach Microsoft IIS servers

bleepingcomputer.com - 07/Feb 18:42

Software vendor Trimble is warning that hackers are exploiting a Cityworks deserialization vulnerability to remotely execute commands on IIS servers...

FinStealer Malware Attacking Leading Indian Bank’s Mobile Users To Steal Login Credentials

itsecuritynews.info - 11/Feb 09:31

A sophisticated malware campaign dubbed “FinStealer” is actively targeting customers of a leading Indian bank through fraudulent mobile...

Chinese Hackers Exploiting Check Point Firewall Vulnerability To Deploy Ransomware

itsecuritynews.info - 20/Feb 18:04

A sophisticated cyber espionage campaign linked to Chinese state-aligned threat actors has targeted organizations across 15 countries using an updated...

Chinese hackers abuse Microsoft APP-v tool to evade antivirus

bleepingcomputer.com - 18/Feb 18:00

The Chinese APT hacking group "Mustang Panda" has been spotted abusing the Microsoft Application Virtualization Injector utility as a LOLBIN to...

ASP.NET Vulnerability Lets Hackers Hijack Servers, Inject Malicious Code

itsecuritynews.info - 07/Feb 22:09

Microsoft cybersecurity experts have identified a vulnerability flaw affecting ASP.NET applications, putting thousands of web servers at risk.… This...

Smokeloader Malware Targeting PrivatBank in Ukraine

thecyberthrone.in - 07/Feb 12:55

Recently, a sophisticated phishing campaign has been targeting PrivatBank, Ukraine’s largest state-owned financial institution. This attack...

FlexibleFerret Campaign from North Korea

thecyberthrone.in - 12/Feb 16:30

The FlexibleFerret campaign is a sophisticated cyberattack targeting macOS users. It is part of the broader Contagious Interview campaign, attributed...

Russian military hackers deploy malicious Windows activators in Ukraine

bleepingcomputer.com - 11/Feb 16:44

The Sandworm Russian military cyber-espionage group is targeting Windows users in Ukraine with trojanized Microsoft Key Management Service (KMS)...

MongoDB is affected by Twin Critical Vulnerabilities

thecyberthrone.in - 14:04

CVE-2025-23061: Mongoose Search Injection Vulnerability Description: CVE-2025-23061 is a critical vulnerability identified in Mongoose versions prior...

Rubriques :