Ransomware Groups Turn to Citrix Bleed 2, BYOVD, and Supply Chain Credentials
By
[email protected] (The Hacker News)
2d ago
Source
Threat actors associated with the Anubis ransomware operation have been observed exploiting the Citrix Bleed 2 (CVE-2025-5777) vulnerability to obtain initial access. "Although tactics differ between affiliates, common patterns emerged in tradecraft through use of legitimate Remote Management and Monitoring (RMM) tooling, credential access, and hands-on-keyboard procedures used for lateral
You might also wanna read
WAF - WAF Release - 2025-07-21
Cloudflare·11mo ago
Critical Redis Security Vulnerability CVE-2025-49844 Allows Remote Code Execution
Redis has identified and fixed a critical security vulnerability (CVE-2025-49844) that allows authenticated users to execute remote code thr
Red Hat npm supply chain attack compromises 32 packages with credential-stealing malware
A supply chain attack targeted Red Hat's npm namespace (@redhat-cloud-services), with 96 compromised versions across 32 packages backdoored
Kaspersky Researchers Document New Infection Chains and IoCs in Notepad++ Supply Chain Attack
Kaspersky GReAT experts discovered previously undocumented infection chains used in the Notepad++ supply chain attack that occurred from Jun
CVE-2026-8037: Critical Unauthenticated RCE in Progress Kemp LoadMaster Actively Exploited
A critical unauthenticated remote code execution vulnerability (CVE-2026-8037) in Progress Kemp LoadMaster is being actively exploited in th
undercodetesting.com·18h agoAnubis ransomware group claims attack on Quest Healthcare Solutions, compromising employee data
Anubis ransomware group claims to have attacked Quest Healthcare Solutions, compromising employee data and internal files. The incident resp
hendryadrian.com·1d ago
Comments
Sign in to join the conversation.
No comments yet. Be the first.