Bleeping Computer

Hackers exploit Four-Faith router flaw to open reverse shells

Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells back to the attackers. The malicious ...
The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.
CSOonline

Chinese APT Billbug deploys new malware toolset in attack on multiple sectors

Latest campaign from the group also known as Lotus Blossom and Lotus Panda targeted Southeast Asian organizations with a new backdoor variant, Chrome credential stealers, and a reverse shell program.
CSOonline

Ransomware actors target patched SonicWall SMA devices with rootkit

A hacker group connected to data theft, extortion, and ransomware is targeting SonicWall SMA 100 series appliances with a custom rootkit that opens reverse shells and steals passwords. A group of ...