Cybersecurity researchers are being warned of a fake PoC exploit for CVE-2024-49113 called ‘LDAPNightmare’, which targets Windows Lightweight Directory Access Protocol (LDAP) vulnerabilities in order to exfiltrate computer and network data. Researchers are advised to verify repository authenticity, prioritize official sources and monitor for suspicious activity to stay safe.
New ‘SleepyDuck’ Malware in Open VSX Marketplace Allow Attackers to Control Windows Systems Remotely
A sophisticated remote access trojan named SleepyDuck has infiltrated the Open VSX IDE extension marketplace, targeting developers using code editors like Cursor and Windsurf. The
