‘Sysrv’ Botnet Targeting Recent Spring Cloud Gateway Vulnerability

‘sysrv’-botnet-targeting-recent-spring-cloud-gateway-vulnerability

A new variant of the Sysrv botnet has added a recent Spring Cloud Gateway vulnerability to its exploit portfolio, Microsoft warns.

The Sysrv botnet has been active since at least late 2020, looking to exploit known security bugs in access interfaces in order to compromise Windows and Linux systems and install a Monero cryptominer on them.

read more

BalkanID Raises $6M for Intelligent IGA Technology

balkanid-raises-$6m-for-intelligent-iga-technology

BalkanID, a startup with ambitious plans to disrupt the Identity Governance and Administration (IGA) space, has banked $5.75 million in seed funding to help organizations find and remediate risky privileges across SaaS and public cloud infrastructure.

read more

New Malware Samples Indicate Return of REvil Ransomware

new-malware-samples-indicate-return-of-revil-ransomware

New malware samples and a new Tor-based leak website suggest that the REvil ransomware operation has been resumed.

Secureworks, which tracks the group behind REvil as Gold Southfield, has conducted an analysis of malware samples apparently created in March and April, and determined that the developer likely has access to the original REvil source code.

read more