Dream Market MDMA Vendor Sentenced to Federal Prison
A Maryland man was sentenced to 42 months in federal prison for conspiring in the purchase and resale of drugs...
Uncategorized
Abandoned Eval PHP WordPress plugin abused to backdoor websites
Threat actors were observed installing the abandoned Eval PHP plugin on compromised WordPress sites for backdoor deployment. Researchers from Sucuri...
Lazarus X_TRADER Hack Impacts Critical Infrastructure Beyond 3CX Breach
Lazarus, the prolific North Korean hacking group behind the cascading supply chain attack targeting 3CX, also breached two critical infrastructure organizations...
CISA Adds 3 Actively Exploited Flaws to KEV Catalog, including Critical PaperCut Bug
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added three security flaws to its Known Exploited Vulnerabilities (KEV)...
Kubernetes RBAC Exploited in Large-Scale Campaign for Cryptocurrency Mining
A large-scale attack campaign discovered in the wild has been exploiting Kubernetes (K8s) Role-Based Access Control (RBAC) to create backdoors...
GhostToken Flaw Could Let Attackers Hide Malicious Apps in Google Cloud Platform
Cybersecurity researchers have disclosed details of a now-patched zero-day flaw in Google Cloud Platform (GCP) that could have enabled threat...
14 Kubernetes and Cloud Security Challenges and How to Solve Them
Recently, Andrew Martin, founder and CEO of ControlPlane, released a report entitled Cloud Native and Kubernetes Security Predictions 2023. These...
CVE-2022-36231
https://github.com/affix/CVE-2022-36231
CVE-2023-34096
https://galogetlatorre.blogspot.com/2023/06/cve-2023-34096-path-traversal-thruk.html
CVE-2023-34096
https://galogetlatorre.blogspot.com/2023/06/cve-2023-34096-path-traversal-thruk.html