Bitcoin Fog was a prominent cryptocurrency “tumbler” on the dark web, allowing cybercriminals to obscure the origins of their digital assets and make them harder to trace.
Fortinet patched a critical SQL injection vulnerability (CVE-2023-48788) in its FortiClient EMS software, allowing unauthenticated attackers to achieve remote code execution with SYSTEM privileges.
PurpleFox is a modular Windows botnet malware with rootkit capabilities, allowing it to hide and persist on infected devices, and it can be used for activities like introducing more potent payloads and launching DDoS attacks.
A critical vCenter Server vulnerability (CVE-2023-34048) is actively being exploited, allowing attackers to execute remote code with high impact and without requiring authentication.
The exposed API tokens had write permissions, allowing attackers to modify files in account repositories and potentially manipulate existing models, posing a significant threat to organizations and their applications.
The Linux encryptor includes extensive command-line options for customization, allowing threat actors to specify exclusion and encryption criteria, as well as configure virtual machines that should not be encrypted.
Certain devices’ SSH connections can be snooped on, allowing attackers to impersonate the equipment and observe users’ login details and activities. The vulnerability is caused by errors in signature generation.