The Cyberpunk game series originated in the late 1980s, and it owes its existence largely to the popularity of books by William Gibson and Philip K. Dick as well as the film Blade Runner, which was based on one of the latter’s novels. Since then, the pen-and-paper games in this series have been refined and show more ...
FireEye's revelation earlier this week that it had been infiltrated by a nation-state hacking crew that stole its red-team hacking tools served as a chilling reminder that no one is completely secure.
Cybersecurity investigators at Facebook have traced the OceanLotus hacking group, long suspected of spying on behalf of the Vietnamese government, to an IT company in Ho Chi Minh City.
In October 2020, Ledger users began receiving fake emails about a new data breach from Ledger and that they should install the latest version of Ledger Live to secure their assets with a new pin.
The Department of Home Affairs has confirmed that a review it undertook in January 2020 on controversial video-sharing platform TikTok was simply a standard network evaluation.
Microsoft has raised the alarm today about a new malware strain that infects users' devices and then proceeds to modify browsers and their settings in order to inject ads into search results pages.
Security experts are warning about the actors behind Egregor ransomware who are rapidly escalating threat activity, with double extortion attacks on scores of victims.
A newly discovered malware strain observed as part of the arsenal of an as-of-yet unidentified hacker group targeting Taiwanese legislators.
Ransomware groups seem to have up the ante with their new strategy of cold-calling their victims only to turn up the heat on companies that refuse to pay the ransom fee after an attack.
An unknown hacker broke into the doors of 2,732 package delivery lockers of PickPoint, a local delivery service, with more than 8,000 package lockers in Moscow and Saint Petersburg.
With BGP routes announced by its Autonomous System Number (ASN) already signed, Microsoft is now working on implementing RPKI filtering, which should be completed by mid-2021.
As it currently stands under TSSR obligations, telcos need to "do their best" to protect infrastructure, but the department put forward the idea of making it more prescriptive and easier to interpret.
At the Black Hat Europe security conference, Forescout researchers will detail the bugs found in seven open-source TCP/IP stacks, the collection of network communication protocols that broker connections between devices and networks.
Spotify said it has reset an undisclosed number of user passwords after blaming a software vulnerability in its systems for exposing private account information to its business partners.
Australia's national intelligence community (NIC) hopes to build a highly-secure private community cloud service capable of protecting data that is classified all the way to the level of top secret.
A “malwareless” ransomware campaign delivered from UK IP addresses targeting weak security controls around internet-facing SQL servers successfully pwned 83,000 victims, according to Israeli infosec biz Guardicore.
Peters made his remarks during a U.S. Senate Commerce Committee hearing on shipping procedures and capabilities for the vaccines, which are expected to start moving throughout the US in coming months.
Tech unicorn UiPath, a startup that makes robotics automation software, is currently emailing users about a security incident that exposed their personal information online.
K-12 educational institutions in the U.S. are being targeted by malicious actors for extortion, data theft, and general disruption of normal activity. The trend will continue through the 2020/2021 academic year.
"A small subset of Cyberoam devices were affected by a pre-authentication SQL injection vulnerability and we quickly deployed a hotfix to these devices. No further action is required," Sophos said.
Palo-Alto, California-based application intelligence startup Bionic on Thursday announced that it has emerged from stealth mode with $17 million in seed and Series A funding.
A Chinese state-sponsored hacking group, also known as an APT, is suspected of having breached a Mongolian software company and compromised a chat app used by hundreds of Mongolian government agencies.
Cisco has once again fixed four previously disclosed critical bugs in its Jabber video conferencing and messaging app that were inadequately addressed, leaving its users susceptible to remote attacks.
Dental Care Alliance discovered on October 11 that it had been the victim of a hack that began on September 18, 2020. The company, which is headquartered in Sarasota, Florida, was able to contain the attack by October 13.
Security vulnerabilities found in Point-of-sale (PoS) terminals produced by two of the biggest manufacturers of these devices in the world could have allowed cybercriminals to do a lot of damage.
Two new backdoors have been attributed to the Molerats advanced persistent threat (APT) group, which is believed to be associated with the Palestinian terrorist organization Hamas.
Microsoft has not said when or if it will patch the vulnerability, but the tech giant pointed out that “this technique requires an attacker to have already compromised the target machine to run malicious code.”
Bug bounty researcher "Tabahi" (ta8ahi) found the issue, described as a site-wide cross-site request forgery (CSRF) bug deserving of a 9 - 10 severity score. The vulnerability impacts the Glassdoor web domain.
The new code-injection technique essentially allows cybercriminals to inject code to launch dangerous XSS (cross-site scripting) attacks within the bounds of a PDF document.
Retailers are on high alert during the holiday season of Magecart attacks, which implant malicious computer code into websites and third-party suppliers of digital systems to steal credit card info.
ESET researchers discovered that chat software called Able Desktop, used by 430 government agencies in Mongolia, was used to deliver the HyperBro backdoor, the Korplug RAT, and a RAT called Tmanger.
The deal values the company at $1.15 billion, which makes Venafi a cybersecurity “unicorn”, a popular term for companies valued over $1 billion. Previous investors, Foundation Capital and TCV, will remain shareholders.
Jabber is Cisco's widely-used enterprise chat and instant-messaging platform, which it acquired in 2008. The app allows developers to embed a natively sandboxed Chromium-based web browser in their applications.
A business in the UK specializing in tax relief for its clients has exposed the personal details of over 100,000 of them via a misconfigured content management system (CMS).
Data management and governance provider Skyflow this week announced a new $17.5 million Series A financing round, bringing the total raised by the company to date up to $25 million.
Ubuntu Security Notice 4669-1 - It was discovered that a cross-site scripting vulnerability in SquirrelMail allows remote attackers to use malicious script content from HTML e-mail to execute code and/or provoke a denial of service.
Aerospike Database versions before 5.1.0.3 permitted user-defined functions (UDF) to call the os.execute Lua function. This Metasploit module creates a UDF utilizing this function to execute arbitrary operating system commands with the privileges of the user running the Aerospike service. This module does not support show more ...
Ubuntu Security Notice 4666-2 - USN-4666-1 partially fixed a vulnerability in lxml, but an additional patch was needed. This update provides the corresponding additional patch in order to properly fix the vulnerability. It was discovered that lxml incorrectly handled certain HTML. An attacker could possibly use this issue to cross-site scripting attacks.
Rukovoditel version 2.6.1 remote code execution exploit that leverages shell upload and local file inclusion vulnerabilities.
Dolibarr version 12.0.3 remote SQL injection exploit that achieves remote code execution.
Courier Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
Courier Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities.
Medical Center Portal Management System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.
Jenkins version 2.235.3 suffers from multiple persistent cross site scripting vulnerabilities.
Supply Chain Management System suffers from a remote SQL injection vulnerability that allows for authentication bypass.
OpenAsset Digital Asset Management suffers from an authenticated blind remote SQL injection vulnerability.
OpenAsset Digital Asset Management suffers from a cross site request forgery vulnerability.
OpenAsset Digital Asset Management was found to provide several endpoints which allowed for unauthenticated data retrieval in a CSV format. Vulnerable versions include 12.0.19 (Cloud) and 11.2.1 (On-premise).
Advanced Component System (ACS) version 1.0 suffers from a path traversal vulnerability.
The OpenAsset Digital Asset Management web application suffers from multiple reflected and persistent cross site scripting vulnerabilities. Vulnerable versions include 12.0.19 (Cloud) and 11.2.1 (On-premise).
Online Bus Booking System Project using PHP MySQL version 1.0 suffers from a persistent cross site scripting vulnerability.
The OpenAsset Digital Asset Management web application allowed for spoofing of IP addresses by using X-Forwarded-For header. By default, the web application would allow all traffic in for 127.0.0.1, in order to prevent users from accidentally blocking themselves. Vulnerable versions include 12.0.19 (Cloud) and 11.2.1 (On-premise).
WordPress DirectoriesPro plugin version 1.3.45 suffers from multiple cross site scripting vulnerabilities.
Cybersecurity researchers from Facebook today formally linked the activities of a Vietnamese threat actor to an IT company in the country after the group was caught abusing its platform to hack into people's accounts and distribute malware. Tracked as APT32 (or Bismuth, OceanLotus, and Cobalt Kitty), the state-aligned operatives affiliated with the Vietnam government have been known for
Microsoft on Thursday took the wraps off an ongoing campaign impacting popular web browsers that stealthily injects malware-infested ads into search results to earn money via affiliate advertising. "Adrozek," as it's called by the Microsoft 365 Defender Research Team, employs an "expansive, dynamic attacker infrastructure" consisting of 159 unique domains, each of which hosts an average of
With the continuing rise of IoT devices, mobile networks, and digital channels, companies face a lot of pressure to generate meaningful and actionable insights from the wealth of data they capture. Gartner Research lists data democratization as one of the top strategic technology trends to watch out for. While empowering non-technical users to run ad-hoc reports gives enterprises the ability to
A relatively new ransomware strain behind a series of breaches on corporate networks has developed new capabilities that allow it to broaden the scope of its targeting and evade security software—as well as with ability for its affiliates to launch double extortion attacks. The MountLocker ransomware, which only began making the rounds in July 2020, has already gained notoriety for stealing
Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! There has never been a better time than 2020 to be a cybercriminal. From extortion ransomware to cyberespionage campaigns, malicious hackers are capitalizing on uncertainty, causing show more ...
The same username and password was shared with all employees... and the entire internet.
Hackers, never at a loss for creative deception, have engineered new tactics for exploiting the weakest links in the cybersecurity chain: ourselves! Social engineering and business email compromise (BEC) are two related cyberattack vectors that rely on human error to bypass the technology defenses businesses deploy show more ...
Cybercrime surpasses $1Trillion in global costs A recent study has put the global cost of cybercrime at over $1 trillion for 2020. This figure is up significantly from 2018, which was calculated at around $600 billion. And while most effects are financial, roughly 92% of affected organizations cited by the study show more ...
