Cybersecurity Report
More Than 3,700 ESXiArgs Ransomware Infected Servers Found
ESXiArgs ransomware is a new ransomware that takes advantage of the Heap Overflow vulnerability of OpenSLP services used on VMware ESXi servers. The vulnerability, also known as CVE-2021-21974, enables Remote Code [...]
Detect Citrix Vulnerabilities With the OSINT Tool: CVE-2022-27510, CVE-2022-27518
In late 2022, two vulnerabilities, CVE-2022-27510 and CVE-2022-27518, were reported in Citrix ADC and Citrix Gateway. These two Citrix vulnerabilities are a critical issue with a CVSS score of 9.8, [...]
Docker Container Security Risks for You To Be Aware Of
Docker is a virtualization platform based on container technology. Virtualization is a technology that creates virtual machines to efficiently utilize hardware, which is a physical resource. Depending on the virtualization [...]
Algolia API Key Raises Severe Hacking Concerns
Algolia is a hosted search engine service for web surfing that uses a SaaS model. This service can process searches quickly and ensure easy implementation with websites and mobile applications [...]
Exposed Redis Server, a Distributor of Coin Mining Malicious Code
Redis (Remote Dictionary Server) is a non-relational database management system for storing and managing unstructured data in a key-value structure. Unstructured data is raw data that cannot be filtered without [...]
New OpenSSL Vulnerability : More than 14,000 Unpatched Servers
On October 31st, new OpenSSL vulnerabilities were discovered: CVE-2022-3786 and CVE-2022-3602. This vulnerability is related to X.509 Email Address Buffer Overflow. In particular, overflow may occur due to Punycode used to process the [...]
