eScan Antivirus Update Mechanism Exploited to Spread Backdoors and Miners

April 25, 2024

A new malware campaign has been exploiting the updating mechanism of the eScan antivirus software to distribute backdoors and cryptocurrency miners like XMRig through a long-standing threat codenamed GuptiMiner targeting large corporate networks.
Cybersecurity firm Avast said the activity is the work of a threat actor with possible connections to a North Korean hacking groupÂ dubbedÂ

Source: Read More

Previous ArticleMajor Security Flaws Expose Keystrokes of Over 1 Billion Chinese Keyboard App Users

Next Article CoralRaider Malware Campaign Exploits CDN Cache to Spread Info-Stealers

Highlights

CVE-2025-4248 – SourceCodester Simple To-Do List System SQL Injection

May 4, 2025

CVE ID : CVE-2025-4248

Published : May 4, 2025, 6:15 a.m. | 5 hours, 12 minutes ago

Description : A vulnerability has been found in SourceCodester Simple To-Do List System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /complete_task.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Microsoft has closed its “Experience Center” store in Sydney, Australia — as it ramps up a continued digital growth campaign

Bing Search APIs to be “decommissioned completely” as Microsoft urges developers to use its Azure agentic AI alternative

Microsoft might kill the Surface Laptop Studio as production is quietly halted

Minecraft licensing robbed us of this controversial NFL schedule release video

The power of generators

The power of generators

Simplify Factory Associations with Laravel’s UseFactory Attribute

This Week in Laravel: React Native, PhpStorm Junie, and more

Microsoft has closed its “Experience Center” store in Sydney, Australia — as it ramps up a continued digital growth campaign

Microsoft has closed its “Experience Center” store in Sydney, Australia — as it ramps up a continued digital growth campaign

Bing Search APIs to be “decommissioned completely” as Microsoft urges developers to use its Azure agentic AI alternative

Microsoft might kill the Surface Laptop Studio as production is quietly halted

eScan Antivirus Update Mechanism Exploited to Spread Backdoors and Miners

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-47916 – Invision Community Themeeditor Remote Code Execution

Elden Ring DLC: How to beat Putrescent Knight in Shadow of the Erdtree

Google is making the Android development private, but doesn’t touch open-source releases

Xbox Cloud Gaming seems to now support early access games, starting with South of Midnight

Unmasking the Hacker: Who is the 20-Year-Old Behind the Hawk Eye App Data Breach?

CVE-2025-4248 – SourceCodester Simple To-Do List System SQL Injection

Ashford Creative

The new HyperX Cloud MIX 2 will firmly take the lead for wireless PC gaming headset fans with stellar battery life

One of the brightest QLED TVs I’ve tested isn’t made by Samsung or LG (and it’s $500 off)

eScan Antivirus Update Mechanism Exploited to Spread Backdoors and Miners

Related Posts