Hackers Compromising IIS Servers to Deploy BadIIS Malware

A widespread campaign targeting Microsoft Internet Information Services (IIS) servers to deploy the BadIIS malware, a tool used for search engine optimization (SEO) fraud and malicious content injection. The campaign, attributed to the Chinese-speaking hacking group DragonRank, has affected over…

New Phishing Attacks Abuses Webflow CDN & CAPTCHAs to Steal Credit Card details

itsecuritynews.info - 13/Feb 13:05

Netskope Threat Labs has uncovered a sophisticated phishing campaign targeting users across various industries, including technology, manufacturing,...

FinStealer Malware Attacking Leading Indian Bank’s Mobile Users To Steal Login Credentials

itsecuritynews.info - 11/Feb 09:31

A sophisticated malware campaign dubbed “FinStealer” is actively targeting customers of a leading Indian bank through fraudulent mobile...

Chinese Hackers Exploiting Check Point Firewall Vulnerability To Deploy Ransomware

itsecuritynews.info - 20/Feb 18:04

A sophisticated cyber espionage campaign linked to Chinese state-aligned threat actors has targeted organizations across 15 countries using an updated...

Chinese hackers abuse Microsoft APP-v tool to evade antivirus

bleepingcomputer.com - 18/Feb 18:00

The Chinese APT hacking group "Mustang Panda" has been spotted abusing the Microsoft Application Virtualization Injector utility as a LOLBIN to...

ASP.NET Vulnerability Lets Hackers Hijack Servers, Inject Malicious Code

itsecuritynews.info - 07/Feb 22:09

Microsoft cybersecurity experts have identified a vulnerability flaw affecting ASP.NET applications, putting thousands of web servers at risk.… This...

FlexibleFerret Campaign from North Korea

thecyberthrone.in - 12/Feb 16:30

The FlexibleFerret campaign is a sophisticated cyberattack targeting macOS users. It is part of the broader Contagious Interview campaign, attributed...

Russian military hackers deploy malicious Windows activators in Ukraine

bleepingcomputer.com - 11/Feb 16:44

The Sandworm Russian military cyber-espionage group is targeting Windows users in Ukraine with trojanized Microsoft Key Management Service (KMS)...

MongoDB is affected by Twin Critical Vulnerabilities

thecyberthrone.in - 14:04

CVE-2025-23061: Mongoose Search Injection Vulnerability Description: CVE-2025-23061 is a critical vulnerability identified in Mongoose versions prior...

Beware Fake Captchas – New Malicious Campaign Exploits WebFlow Users

itsecuritynews.info - 14/Feb 08:07

Hackers are using fake CAPTCHAs to trick people on Webflow websites. They want to steal financial information including… The post Beware Fake...

Chinese hackers use custom malware to spy on US telecom networks

bleepingcomputer.com - 20/Feb 16:11

The Chinese state-sponsored Salt Typhoon hacking group uses a custom utility called JumbledPath to stealthily monitor network traffic and potentially...

Rubriques :