CyberSecurity updates
2025-02-27 13:47:54 Pacfic

Unsecured Tunneling Exposes Millions of Hosts - 5d
Unsecured Tunneling Exposes Millions of Hosts

Multiple unauthenticated tunneling protocols expose over 4.2 million hosts, including VPNs and routers, to spoofing and DDoS attacks. These protocols lack authentication or encryption, making them vulnerable to hijacking for anonymous attacks and network access, as well as enabling new amplification DDoS attacks.

BlueAlpha APT Leverages Cloudflare Tunnels for Malware Distribution - 19d
BlueAlpha APT Leverages Cloudflare Tunnels for Malware Distribution

The Russian state-sponsored APT group BlueAlpha is using Cloudflare Tunnels to distribute custom malware, such as GammaDrop and GammaLoad. They employ spearphishing with malicious HTML attachments to evade detection and maintain persistent access to compromised networks. This activity highlights the abuse of trusted infrastructure for malicious purposes.