Polymath Central

390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC Exploits

December 13, 2024

A now-removed GitHub repository that advertised a WordPress tool to publish posts to the online content management system (CMS) is estimated to have enabled the exfiltration of over 390,000 credentials.…

Cybersecurity

Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

December 13, 2024

A security flaw has been disclosed in OpenWrt’s Attended Sysupgrade (ASU) feature that, if successfully exploited, could have been abused to distribute malicious firmware packages. The vulnerability, tracked as CVE-2024-54143,…

Cybersecurity

DoJ Indicts 14 North Koreans for $88M IT Worker Fraud Scheme Over Six Years

December 13, 2024

The U.S. Department of Justice (DoJ) has indicted 14 nationals belonging to the Democratic People’s Republic of Korea (DPRK or North Korea) for their alleged involvement in a long-running conspiracy…

Cybersecurity

How to Generate a CrowdStrike RFM Report With AI in Tines

December 13, 2024

Run by the team at orchestration, AI, and automation platform Tines, the Tines library contains pre-built workflows shared by real security practitioners from across the community, all of which are…

Cybersecurity

Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms

December 13, 2024

Iran-affiliated threat actors have been linked to a new custom malware that’s geared toward IoT and operational technology (OT) environments in Israel and the United States. The malware has been…

Cybersecurity

New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade Detection

December 13, 2024

Cybersecurity researchers have uncovered a new Linux rootkit called PUMAKIT that comes with capabilities to escalate privileges, hide files and directories, and conceal itself from system tools, while simultaneously evading…

Cybersecurity

FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K Seized

December 13, 2024

The U.S. Department of Justice (DoJ) on Thursday announced the shutdown of an illicit marketplace called Rydox (“rydox.ru” and “rydoxcc”) for selling stolen personal information, access devices, and other tools…

Cybersecurity

Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet States

December 12, 2024

The Russia-linked state-sponsored threat actor tracked as Gamaredon has been attributed to two new Android spyware tools called BoneSpy and PlainGnome, marking the first time the adversary has been discovered…

Cybersecurity

Over 300K Prometheus Instances Exposed: Credentials and API Keys Leaking Online

December 12, 2024

Cybersecurity researchers are warning that thousands of servers hosting the Prometheus monitoring and alerting toolkit are at risk of information leakage and exposure to denial-of-service (DoS) as well as remote…

Cybersecurity

SaaS Budget Planning Guide for IT Professionals

December 12, 2024

SaaS services are one of the biggest drivers of OpEx (operating expenses) for modern businesses. With Gartner projecting $247.2 billion in global SaaS spending this year, it’s no wonder SaaS…