Ransomware criminals have exploited a vulnerability in PHP programming language that allows them to execute malicious code on web servers. Security firm Censys detected the flaw resulted in 1,000 servers infected by a ransomware strain called TellYouThePass, primarily in China. All infected files were given a .locked extension, with a ransom note demanding a $6,500 decryption key. The vulnerability, dubbed CVE-2024-4577, affects PHP when it runs in CGI mode. A security patch was issued on 6 June.
CISA Warns of Critical VMware vCenter RCE Vulnerability Now Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting Broadcom’s VMware vCenter Server to its Known Exploited Vulnerabilities (KEV) catalog. This
