Hackers Exploit Openfire Vulnerability To Deploy Kinsing Malware | allinfosecnews.com

Sept. 1, 2023, 11:05 a.m. | Guru Baran

GBHackers On Security gbhackers.com

The Kinsing malware has resurfaced with a new attack method that exploits the Openfire vulnerability tracked as CVE-2023-32315. A path traversal attack caused by this vulnerability allows an unauthorized user access to the Openfire setup environment. Researchers from Aqua Nautilus report that the threat actor may upload malicious plugins and create a new admin user as a […]

The post Hackers Exploit Openfire Vulnerability To Deploy Kinsing Malware appeared first on GBHackers - Latest Cyber Security News | Hacker News …

access actor aqua attack cve deploy environment exploit exploits hackers kinsing kinsing malware malicious malicious plugins malware may openfire path path traversal plugins report researchers threat threat actor upload vulnerability

More from gbhackers.com / GBHackers On Security

Ex-Cybersecurity Consultant Jailed For Trading Confidential Data 21 hours ago | gbhackers.com

confidential confidential data trading consultant custody +15

Mal.Metrica Malware Hijacks 17,000+ WordPress Sites 1 day, 14 hours ago | gbhackers.com

attackers bypassing captcha captchas +25

Hackers Exploit Microsoft Graph API For C&C Communications 1 day, 15 hours ago | gbhackers.com

amp analysts api called +28

ApacheMQ Authentication Flaw Let Unauthorized Users Perform Multiple Actions 1 day, 15 hours ago | gbhackers.com

actions activemq apache apache activemq +20

68% of Data Breach Occurs Due to Social Engineering Attacks 1 day, 15 hours ago | gbhackers.com

attacks breach breaches cyber +20

U.S. Govt Warns of Massive Social Engineering Attack from North Korean Hackers 1 day, 19 hours ago | gbhackers.com

advanced advisory agency attack +31

Cisco IP Phone Vulnerability Let Attackers Trigger DoS Attack 1 day, 20 hours ago | gbhackers.com

access attack attackers attacks +24

Threat Actors Renting Out Compromised Routers To Other Criminals 1 day, 21 hours ago | gbhackers.com

anonymization apt apt group botnet +27

New “Goldoon” Botnet Hijacking D-Link Routers to Use for Other Attacks 1 day, 22 hours ago | gbhackers.com

april attacks botnet control +23

DevSecOps Engineer

@ Material Bank | Remote

View on infosec-jobs.com

Instrumentation & Control Engineer - Cyber Security

@ ASSYSTEM | Bridgwater, United Kingdom

View on infosec-jobs.com

Security Consultant

@ Tenable | MD - Columbia - Headquarters

View on infosec-jobs.com

Management Consultant - Cybersecurity - Internship

@ Wavestone | Hong Kong, Hong Kong

View on infosec-jobs.com

TRANSCOM IGC - Cybersecurity Engineer

@ IT Partners, Inc | St. Louis, Missouri, United States

View on infosec-jobs.com

Manager, Security Operations Engineering (EMEA)

@ GitLab | Remote, EMEA

View on infosec-jobs.com