The Cybersecurity and Infrastructure Security Agency (CISA) has added a 9.8-rated vulnerability affecting Microsoft SharePoint servers to its list of Known Exploited Vulnerabilities (KEV). The vulnerability, CVE-2023-29357, could allow attackers to bypass authentication checks and gain administrative access to a server. Despite a patch being issued by Microsoft in June, CISA reports it is still being actively exploited.
New HttpTroy Backdoor Poses as VPN Invoice in Targeted Cyberattack on South Korea
The North Korea-linked threat actor known as Kimsuky has distributed a previously undocumented backdoor codenamed HttpTroy as part of a likely spear-phishing attack targeting a
