Threat actors created a website to impersonate UsenetClub, a subscription service for “uncensored” access to images and videos downloaded from Usenet. They claimed to provide free access to the site after the installation of a “CryptVPN” software.
Certain devices’ SSH connections can be snooped on, allowing attackers to impersonate the equipment and observe users’ login details and activities. The vulnerability is caused by errors in signature generation.