lateral movement attack

From Cyber Security News – Bitdefender GravityZone Console PHP Vulnerability Let Attackers Execute Arbitrary Commands

A critical security vulnerability has been discovered in Bitdefender GravityZone Console that could allow remote attackers to execute arbitrary commands on affected systems. The flaw tracked as CVE-2025-2244 has a…

shaikh Saqib April 7, 2025

News

From Cyber Security News – Hackers Exploit Windows MMC Zero-Day Vulnerability to Execute Malicious Code

A sophisticated campaign by Russian threat actors exploiting a critical zero-day vulnerability in the Microsoft Management Console (MMC). The vulnerability, CVE-2025-26633, allows attackers to bypass security features and execute malicious…

shaikh Saqib March 25, 2025

News

From Cyber Security News – New C++ Based IIS Malware With Numerous Functionalities Mimics cmd.exe To Stay Undetected

Security researchers have uncovered a sophisticated malware strain targeting Microsoft’s Internet Information Services (IIS) web servers, leveraging C++ to deploy advanced evasion techniques and payload delivery mechanisms. The malware disguises…

shaikh Saqib March 17, 2025

News

From Cyber Security News – SolarWinds Web Help Desk Vulnerability Let Hackers Access Stored Passwords – PoC Released

A critical vulnerability in SolarWinds’ Web Help Desk software (CVE-2024-28989) allowed attackers to decrypt sensitive credentials, including database passwords and LDAP/SMTP authentication secrets, through cryptographic weaknesses in its AES-GCM implementation. …

shaikh Saqib March 12, 2025