Persistent malware targets Redis to create botnet
A persistent malware has targeted the cache store Redis. The malware was discovered and disclosed earlier this month but managed to redirect and adapt in the meantime.
P2Pinfect is malware that targets Redis. Redis is an open-source software deployed as a caching technique to make Web sites loa... Read more
’55 percent more vulnerability exploits in 2022′
Palo Alto Networks' Unit 42 research team reports on the malware trends it saw in 2022 and early 2023. The rise of ChatGPT has led to an explosion of impersonation attempts and website exploits aimed at exploiting AI hype. It is also seen that many more exploitations of vulnerabilities occurred in ... Read more
Microsoft patches vulnerability in Service Fabric
Microsoft patched a serious vulnerability in Service Fabric. The threat was discovered by security specialists from Unit42 of Palo Alto Networks.
The vulnerability ('FabricScape') allows attacks on all services and applications that Service Fabric supports. These include Azure Service Fabric, Az... Read more
Palo Alto Networks details flaws in Microsoft Azure Container Instances
Palo Alto Networks’ research arm, Unit 42, revealed how it found vulnerabilities in the multi-tenant Kubernetes clusters hosted on the Azure Container Instances (ACI). The flaws could have been exploited to execute code on users’ containers, steal data or hijack resources to mine cryptocurrenci... Read more
Amazon Web Services APIs could be exploited to steal user data
Attackers can abuse APIs to leak user identities and Access Management info.
Unit 42 researchers have discovered a class of Amazon Web Services (AWS) APIs that are vulnerable to abuse. The abuse by attackers could leak the AWS Identity and Access Management (IAM) users and roles in arbitrary acc... Read more
34 million vulnerabilities found at AWS, Azure and Google Cloud Platform
Security researchers at Unit 42 claim to have found more than 34 million vulnerabilities with various cloud service providers. The vulnerabilities are in Amazon Web Services (AWS), Azure and the Google Cloud Platform (GCP).
The vulnerabilities are described in Unit 42's Cloud Threat Risk Report, cov... Read more
Bit.ly, BlogSpot and Pastebin used to spread malware
Palo Alto Networks Unit 42 security researchers have discovered that the Aggah campaign uses Bit.ly, BlogSpot, and Pastebin to spread variants of the RevengeRAT malware. RevengeRAT is a remote access tool.
According to the researchers, the Aggah campaign started with an e-mail that was sent on 27 Ma... Read more