U.S. Seizes Over $31 Million in Crypto from Uranium Finance Hack

88/68 Wednesday, March 5, 2025 The U.S. government has announced the recovery of over $31 million in stolen cryptocurrency from the 2021 Uranium Finance hack. The decentralized finance (DeFi) platform was hacked twice in April of that year, resulting in total losses exceeding $53 million. Hackers exploited a vulnerability in the platform’s smart contract to […]

ThaiCERT

March 5, 2025

Cisco Patches Security Vulnerabilities in Nexus Switches to Prevent DoS and Command Injection Attacks

86/68 Tuesday, March 4, 2025 Cisco has released security updates to address vulnerabilities affecting Nexus 3000 and Nexus 9000 series switches running NX-OS in standalone mode. The first vulnerability, CVE-2025-20111 (CVSS 7.4), stems from improper handling of Ethernet frames, allowing an attacker within the same network to send specially crafted frames that can cause the […]

ThaiCERT

March 4, 2025

Ransomware Groups Exploit Zero-Day Vulnerability in Paragon Partition Manager’s BioNTdrv.sys Driver

84/68 Monday, March 3, 2025 Microsoft has issued a warning that ransomware groups are actively exploiting a zero-day vulnerability in the BioNTdrv.sys driver of Paragon Partition Manager to attack systems and escalate privileges to SYSTEM level. The vulnerability, identified as CVE-2025-0289, is one of five security flaws found in driver versions older than 2.0.0. Hackers […]

ThaiCERT

March 3, 2025

Qilin Ransomware Group Attacks Lee Enterprises, Threatens to Release Data on March 5

83/68 Monday, March 3, 2025 The cybercriminal group Qilin has claimed responsibility for a cyberattack on Lee Enterprises, a major U.S. media company, on February 3. The attack disrupted the company’s operations, and the hackers have threatened to release the stolen data on March 5 unless a ransom is paid. The leaked data reportedly includes […]

ThaiCERT

March 3, 2025

CISA Adds Microsoft Partner Center and Synacor Zimbra Collaboration Suite Vulnerabilities to Known Exploited Vulnerabilities (KEV)

82/68 Friday, February 28, 2025 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two vulnerabilities—CVE-2023-34192 in Synacor Zimbra Collaboration Suite (ZCS) and CVE-2024-49035 in Microsoft Partner Center—to its Known Exploited Vulnerabilities (KEV) catalog. Details of these vulnerabilities are as follows: To mitigate risks associated with these vulnerabilities, agencies under the Federal Civilian Executive […]

ThaiCERT

February 28, 2025

New Linux Malware ‘Auto-Color’ Grants Hackers Full Remote Access to Compromised Systems

81/68 Friday, February 28, 2025 Researchers from Palo Alto Networks Unit 42 have discovered a previously undocumented Linux malware named Auto-Color, which has been targeting universities and government organizations in North America and Asia between November and December 2024. This malware allows attackers to gain full remote access to infected systems, making its removal extremely […]

ThaiCERT

February 28, 2025

CISA Adds Adobe ColdFusion and Oracle Agile PLM Vulnerabilities to Known Exploited Vulnerabilities (KEV) Catalog

80/68 Thursday, February 27, 2025 The Cybersecurity and Infrastructure Security Agency (CISA) has added two vulnerabilities—CVE-2017-3066 in Adobe ColdFusion and CVE-2024-20953 in Oracle Agile Product Lifecycle Management (PLM)—to its Known Exploited Vulnerabilities (KEV) catalog. The details of these vulnerabilities are as follows: To mitigate the risks associated with these vulnerabilities, Federal Civilian Executive Branch (FCEB) […]

ThaiCERT

February 27, 2025

Have I Been Pwned Adds 284 Million Stolen Accounts from Info-Stealing Malware

79/68 Thursday, February 27, 2025 Have I Been Pwned (HIBP), a data breach notification service, has added over 284 million stolen accounts to its database after discovering the data being shared on a Telegram channel named “ALIEN TXTBASE”—a repository for credentials stolen by info-stealing malware. Troy Hunt, the founder of HIBP, revealed that the dataset […]

ThaiCERT

February 27, 2025
1 2 3 20