최신 보안 동향 (17) 썸네일형 리스트형 WP Automatic WordPress plugin hit by millions of SQL injection attacks 출처 https://www.bleepingcomputer.com/news/security/wp-automatic-wordpress-plugin-hit-by-millions-of-sql-injection-attacks/#google_vignette WP Automatic WordPress plugin hit by millions of SQL injection attacksHackers have started to target a critical severity vulnerability in the WP Automatic plugin for WordPress to create user accounts with administrative privileges and to plant backdoors for l.. CISA urges software devs to weed out SQL injection vulnerabilities 출처 https://www.bleepingcomputer.com/news/security/cisa-urges-software-devs-to-weed-out-sql-injection-vulnerabilities/ CISA urges software devs to weed out SQL injection vulnerabilities CISA and the FBI urged executives of technology manufacturing companies to prompt formal reviews of their organizations' software and implement mitigations to eliminate SQL injection (SQLi) security vulnerabilitie.. Hackers poison source code from largest Discord bot platform 출처 https://www.bleepingcomputer.com/news/security/hackers-poison-source-code-from-largest-discord-bot-platform/ Hackers poison source code from largest Discord bot platform The Top.gg Discord bot community with over 170,000 members has been impacted by a supply-chain attack aiming to infect developers with malware that steals sensitive information. www.bleepingcomputer.com 본문 내용 170,000명 이상의 회원을.. New Go loader pushes Rhadamanthys stealer 출처 https://www.malwarebytes.com/blog/threat-intelligence/2024/03/new-go-loader-pushes-rhadamanthys New Go loader pushes Rhadamanthys stealer | Malwarebytes A malicious ad for the popular admin tool PuTTY leads victims to a fake site that downloads malware. www.malwarebytes.com 본문 내용 Malware loader ( 드로퍼 혹은 다운로더라고도 함 )는 범죄조직에서 인기 있는 상품이다. 주요 기능은 시스템을 성공적으로 손상시키고 하나 또는 여러 개의 추가 페이로드를 배포하는 것이다. 좋은 .. 국제통화기금(IMF) 이메일 계정 사이버 공격으로 해킹 당함 출처 https://www.bleepingcomputer.com/news/security/international-monetary-fund-email-accounts-hacked-in-cyberattack/ International Monetary Fund email accounts hacked in cyberattack The International Monetary Fund (IMF) disclosed a cyber incident on Friday after unknown attackers breached 11 IMF email accounts earlier this year. www.bleepingcomputer.com 본문 내용 국제통화기금(IMF)은 올해 초 신원을 알 수 없는 공격자가 11개.. 2023년 GitHub에서 1,200만 개 이상의 인증 비밀 및 키 유출 출처 https://www.bleepingcomputer.com/news/security/over-12-million-auth-secrets-and-keys-leaked-on-github-in-2023/#google_vignette Over 12 million auth secrets and keys leaked on GitHub in 2023 GitHub users accidentally exposed 12.8 million authentication and sensitive secrets in over 3 million public repositories during 2023, with the vast majority remaining valid after five days. www.bleepingco.. 해커들은 WordPress 플러그인 결함을 악용하여 3,300개 사이트를 악성 코드로 감염 출처 https://www.bleepingcomputer.com/news/security/hackers-exploit-wordpress-plugin-flaw-to-infect-3-300-sites-with-malware/ Hackers exploit WordPress plugin flaw to infect 3,300 sites with malware Hackers are breaching WordPress sites by exploiting a vulnerability in outdated versions of the Popup Builder plugin, infecting over 3,300 websites with malicious code. www.bleepingcomputer.com 본문 내용 해.. 해커가 새로운 Windows Defender 제로데이를 통해 DarkMe 멀웨어 배포 출처 https://www.bleepingcomputer.com/news/security/hackers-used-new-windows-defender-zero-day-to-drop-darkme-malware/ Hackers used new Windows Defender zero-day to drop DarkMe malware Microsoft has patched today a Windows Defender SmartScreen zero-day exploited in the wild by a financially motivated threat group to deploy the DarkMe remote access trojan (RAT). www.bleepingcomputer.com 본문 내용 Micro.. 이전 1 2 3 다음 목록 더보기
