KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.

Snyk Unveils Evo Continuous Offensive Security to Bring AI-Native Pentesting to the Enterprise

Snyk, the AI security company, today unveiled Evo Continuous Offensive Security (COS), a new solution in Evo by Snyk that uses AI-native offensive testing to continuously uncover exploitable risk ...
Microsoft

From poisoned search results to GPU mining: A cryptojacking campaign abusing ScreenConnect and Microsoft .NET utilities

Microsoft exposes a cryptojacking campaign using SEO poisoning and ScreenConnect to target high-performance PCs, with ...