Threat actors have begun leveraging the critical Apache ActiveMQ vulnerability, tracked as CVE-2023-46604, to facilitate the distribution of the Golang-based GoTitan botnet and PrCtrl Rat, a .NET program, as well as the Sliver, Kinsing, and Ddostff malware strains, Hackread reports.
Eighty to 200 law firms across the UK may have their phone, email, and case management systems inaccessible following a cyberattack against managed service provider CTS that involved the exploitation of the Citrix Bleed vulnerability, reports The Record, a news site by cybersecurity firm Recorded Future.
While Intel released a fix for the Reptar flaw — and that’s good — security pros say teams must keep the BIOS, OS, and drivers updated as a matter of course.