Monthly Archives: June 2022
Technical Details Released for ‘SynLapse’ RCE Vulnerability Reported in Microsoft Azure
June 14, 2022Ravie Lakshmanan
Microsoft has incorporated additional improvements to address the recently disclosed SynLapse security vulnerability in order to meet comprehensive tenant isolation requirements in Azure Data Factory and...
Unpatched Travis CI API Bug Exposes Thousands of Secret User Access Tokens
June 14, 2022Ravie Lakshmanan
An unpatched security issue in the Travis CI API has left tens of thousands of developers' user tokens exposed to potential...
Researchers Detail PureCrypter Loader Cyber Criminals Using to Distribute Malware
June 14, 2022Ravie Lakshmanan
Cybersecurity researchers have detailed the workings of a fully-featured malware loader dubbed PureCrypter that's being purchased by cyber criminals to deliver remote access...
New Syslogk Linux Rootkit Lets Attackers Remotely Command It Using “Magic Packets”
A new covert Linux kernel rootkit named Syslogk has been spotted under development in the wild and cloaking a malicious payload that can be remotely commandeered...
What is the Essential Eight (And Why Non-Aussies Should Care)
June 14, 2022The Hacker News
In 2017, The Australian Cyber Security Center (ACSC) published a set of mitigation strategies that were designed to help organizations...
New Zimbra Email Vulnerability Could Let Attackers Steal Your Login Credentials
A new high-severity vulnerability has been disclosed in the Zimbra email suite that, if successfully exploited, enables an unauthenticated attacker to steal cleartext passwords...
Patch Tuesday: Microsoft Issues Fix for Actively Exploited ‘Follina’ Vulnerability
Microsoft finally released fixes to address an actively exploited Windows zero-day vulnerability known as Follina as part of its Patch Tuesday updates.
Also addressed by...
Cloudflare Saw Record-Breaking DDoS Attack Peaking at 26 Million Request Per Second
Cloudflare on Tuesday disclosed that it had acted to prevent a record-setting 26 million request per second (RPS) distributed denial-of-service (DDoS) attack last week,...
A Microsoft Office 365 Feature Could Help Ransomware Hackers Hold Cloud Files Hostage
A "dangerous piece of functionality" has been discovered in Microsoft 365 suite that could be potentially abused by a malicious actor to ransom files...
MaliBot: A New Android Banking Trojan Spotted in the Wild
A new strain of Android malware has been spotted in the wild targeting online banking and cryptocurrency wallet customers in Spain and Italy, just...
