The Hacker News

China-Linked UAT-8099 Targets IIS Servers in Asia with BadIIS SEO Malware

Cisco Talos links China-based UAT-8099 to IIS server attacks using BadIIS malware for regional SEO fraud, targeting Thailand ...

Web skimming attacks target major payment networks

Web skimming campaigns use obfuscated JavaScript code to steal credit card data from checkout pages without detection by ...
CRN

Microsoft SharePoint Server Attacks Are ‘Close-To-Worst-Case Scenario:’ Researcher

Cyberattacks exploiting zero-day vulnerabilities in on-premises SharePoint Servers have so far led to ‘widespread impact across hundreds of organizations,’ according to a researcher at cybersecurity ...
CRN

‘Patching Is Not Enough’ With Microsoft SharePoint Server Attacks: Experts

Microsoft is urging organizations to rotate machine keys for on-premises SharePoint Servers — an indicator that attackers are stealing the keys to enable further attacks, according to researchers.

Web DDoS attacks see major surge as AI allows more powerful attacks

Layer 7 Web DDoS attacks are spiking, Radware report claims EMEA bore the brunt of Web DDoS attacks Financial institutions ...
Bleeping Computer

New HTTP/2 DoS attack can crash web servers with a single connection

Newly discovered HTTP/2 protocol vulnerabilities called "CONTINUATION Flood" can lead to denial of service (DoS) attacks, crashing web servers with a single TCP connection in some implementations.
CNN

Microsoft alerts businesses and governments to attacks on SharePoint servers

Microsoft has issued an alert about “active attacks” on server software used by government agencies and businesses to share documents within organizations and recommended security updates that ...