Over 1,400 CrushFTP servers vulnerable to actively exploited bug

Published on April 25, 2024

​Over 1,400 CrushFTP servers exposed online were found vulnerable to attacks currently targeting a critical severity server-side template injection (SSTI) vulnerability previously exploited as a zero-day. [...]

Continue reading on website
Other news

Microsoft Earnings Preview: 5 Things To Know

April 25, 2024
AI, Azure and security are just some of the biggest topics expected to come up Thursday on the company’s third fiscal quarter earnings call.

North Korea's Lazarus Group Deploys New Kaolin RAT via Fake Job Lures

April 25, 2024
The North Korea-linked threat actor known as Lazarus Group employed its time-tested fabricated job lures to deliver a new remote access trojan called Kaolin RAT.The malware could, "aside from standard RAT functionality, change the last write timestamp of a selected file and load any received DLL binary from [command-and-control] server," Avast security researcher Luigino