Customers are warned by Zyxel of various attacks on numerous firewalls and devices. Whether the vulnerabilities are new and the number of customers affected along with their geographical region are still unknown, according to Ars Technica. Customers must follow the guidance given by the company in order to keep their show more ...
Due to Dell's flawed update method, hackers may be able to exploit four separate vulnerabilities in order to gain complete control of affected devices. This issue affects 129 tablets, laptops, and PCs, all of which being protected by Secure Boot. The security flaws have a CVSS rating of 8.3 out of 10, says Threat show more ...
Many Western Digital My Book users complain that their devices have been reset to factory defaults. Even worse, all the information on them suddenly disappeared. It is not yet clear whether the cause of the incident was a technical failure or an attack, but we recommend that all owners disconnect their My Book Live show more ...
Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a previously unknown critical flaw that can be triggered by anyone who knows the Internet address of an affected show more ...
Password predictability is one of the most significant challenges to overall online security. Well aware of this trend, hackers often seek to exploit what they assume are the weak passwords of the average computer user. With a little bit of background information, “brute forcing” a simple password is a show more ...
The security flaws impact Weidmüller's wireless access point/bridge/client devices running firmware versions prior to 1.16.21 (build 21010513) or 1.11.13 (build 21010513).
Google would be rolling out a new security update in order to make Google Drive files more secure. This update will be applicable to all Google Workspace customers and personal Google accounts.
A report has highlighted a range of areas for improvement, from failing to mandate the use of hardware security keys for authentication to the use of static keys for SSH access.
The emails ask the victim to be attentive “to the report attached below that requires your immediate response” and says that “[t]he attachment contains FINRA updated Public Policy information.”
When establishing visibility and security controls across endpoints, IT and security professionals need to understand that each endpoint bears some or all responsibility for its own security.
The Institute for Security and Technology received a $450,000 donation from Craig Newmark Philanthropies to continue its work combatting ransomware, the organization shared first with CyberScoop.
VMware this week announced the availability of patches for an authentication bypass vulnerability in VMware Carbon Black App Control (AppC) that runs on Windows machines.
The source code of the notorious MIRAI IoT malware was released to the public by its author back in 2016. This event led to the rise of numerous copycats, creating their own flavors of IoT botnets.
Researchers at the Columbia University School of Engineering and Applied Science have showcased two new approaches to providing computers with memory protection without sacrificing performance.
In this attack, Microsoft saw attackers using Cobalt Strike and report they stole credentials — including the Active Directory database — and exfiltrated data using rclone.
According to Akamai, cyberattack traffic targeting the video game industry took the cake during 2020, growing at a furious rate that outpaced all other industries during the COVID-19 pandemic.
In a new report by Trustwave, researchers explain how a threat actor has begun to utilize WIM (Windows Imaging Format) attachments to distribute the Agent Tesla remote access trojan.
FBI Director Chris Wray on Wednesday pleaded with public companies and other hacking victims to avoid paying ransom, saying he fears it will only embolden cyber criminals to ramp up future attacks.
Now the OSV and the schema has been expanded to several new key open-source ecosystems: Go, Rust, Python, and DWF. This expansion unites and aggregates their vulnerability databases.
The compromised information included Personal Identifiable Information (PII) such as names, customer IDs, contact numbers, email IDs, trade login IDs, branch IDs, city, and country.
The recovery costs for the May ransomware attack on Health Service Executive, Ireland's publicly funded healthcare system, is likely to total $600 million, says Paul Reid, HSE's director general.
The data comprised self-reported credit scores, driver licenses, social security numbers, and credit card information which was entered by customers and interested buyers on dealer and company websites between January 2014 and June 2017.
Obtaining Russian cooperation in the fight against cybercrime is considered by most experts a critical component of deterring cybercrime in general and ransomware specifically.
Unlike other emerging technologies, most experts in quantum physics and cybersecurity do think quantum-based encryption will become essential to data security in the not-too-distant future.
After a months-long absence, the malware loader JSSLoader returned in June 2021 cyberattack campaigns by TA543 threat actor, rewritten from the .NET programming language to C++.
The database contained admin and user information, including WordPress login URLs, names, email addresses, usernames, roles, host IP addresses, timestamps, and configuration and security information.
Threat monitoring and identity access management provider FYEO on Wednesday announced that it emerged from stealth mode with the acquisition of threat intelligence company Intelliagg.
Drata Inc., a new startup working to make it easier for companies to comply with cybersecurity standards, today announced that it has raised a $25 million funding round led by GGV Capital.
It has done so by hiding its malware in pirated and cracked copies of popular software, Daniel Beneš, a malware analyst for antivirus maker Avast, said in a report today.
A group of bipartisan lawmakers introduced legislation to step up cybersecurity literacy and increase awareness among the American public amid a spike in cyberthreats against critical infrastructure.
A high-severity vulnerability patched recently by Fortinet in its FortiWeb web application firewall (WAF) can be exploited to execute arbitrary commands and can be chained with other security holes.
The funding round was led by Insight Partners and is expected to help the company bring its Confidential Cloud Software Platform to market and support technology development and innovation.
The phishing emails in this campaign purportedly contain a link to home purchase closing documents from First American, a company whose services include real estate title and settlement.
Researchers developed an attack technique named Adversarial Octopus that could perform a targeted attack on AI-based facial recognition systems. This attack shows that AI systems require much more attention at the security front, and such new attack methods will help raise awareness.
Cl0p ransomware hackers just dumped stolen data on their dark website claiming it was stolen from a new victim. Several gang members of the group were detained by Ukrainian police last week but it seems the group is still active. Organizations are advised to proactively follow adequate security measures to stay protected.
Ubuntu Security Notice 4998-1 - It was discovered that in some situations Ceph logged passwords from the mgr module in clear text. An attacker could use this to expose sensitive information. Goutham Pacha Ravi, Jahson Babel, and John Garbutt discovered that user credentials in Ceph could be manipulated in certain show more ...
Flawfinder searches through source code for potential security flaws, listing potential security flaws sorted by risk, with the most potentially dangerous flaws shown first. This risk level depends not only on the function, but on the values of the parameters of the function.
SAPSprint version 7.60 suffers from an unquoted service path vulnerability.
This Metasploit module exploits the file upload vulnerability of Lightweight self-hosted facebook-styled PHP blog and allows remote code execution.
Ubuntu Security Notice 4995-2 - USN-4995-1 fixed vulnerabilities in Thunderbird. This update provides the corresponding updates for Ubuntu 18.04 LTS. Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could show more ...
Seeddms version 5.1.10 authenticated remote command execution exploit.
Online Pet Shop We App version 1.0 suffers from remote SQL injection and shell upload vulnerabilities.
Simple Client Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Whitepaper discussing BIZARRELOVETRIANGLE and FULLCLIP - JNLP parameter injection attacks to remote, persistent, multi-os code execution.
The cybercrime ring that was apprehended last week in connection with Clop (aka Cl0p) ransomware attacks against dozens of companies in the last few months helped launder money totaling $500 million for several malicious actors through a plethora of illegal activities. "The group — also known as FANCYCAT — has been running multiple criminal activities: distributing cyber attacks; operating a
A Ukrainian national and a mid-level supervisor of the hacking group known as FIN7 has been sentenced to seven years in prison for his role as a "pen tester" and perpetuating a criminal scheme that enabled the gang to compromise millions of customers debit and credit cards. Andrii Kolpakov, 33, was arrested in Spain on June 28, 2018, and subsequently extradited to the U.S. the following year on
Google's sweeping proposals to deprecate third-party cookies in Chrome browser is going back to the drawing board after the company announced plans to delay the rollout from early 2022 to late 2023, pushing back the project by nearly two years. "While there's considerable progress with this initiative, show more ...
Taiwanese networking equipment company Zyxel is warning customers of an ongoing attack targeting a "small subset" of its security products such as firewall and VPN servers. Attributing the attacks to a "sophisticated threat actor," the firm noted that the attacks single out appliances that have remote management or SSL VPN enabled, namely in the USG/ZyWALL, USG FLEX, ATP, and VPN series running
A previously undocumented Windows malware has infected over 222,000 systems worldwide since at least June 2018, yielding its developer no less than 9,000 Moneros ($2 million) in illegal profits. Dubbed "Crackonosh," the malware is distributed via illegal, cracked copies of popular software, only to disable antivirus programs installed in the machine and install a coin miner package called XMRig
The Western District of Washington has sentenced a Ukrainian man to seven years in prison for his role in a hacking gang that is estimated to have caused more than one billion dollars worth of damage. Read more in my article on the Hot for Security blog.
Storage drive maker Western Digital is telling owners of its WD My Book Live device to disconnect it from the internet, after reports that some have had their data erased by malicious software. Read more in my article on the Tripwire State of Security blog.
