FortiWeb, Fortinet's web application firewall (WAF), is vulnerable to an unpatched command-injection security vulnerability that permits privilege escalation as well as device takeover, according to Rapid7. FortiWeb is a cybersecurity defense platform designed to defend business-critical online applications from show more ...
After the largest heist in the history of decentralized financial systems, PolyNetwork decided to use an original approach by offering the attacker a job and allowing him to keep a small portion of the loot, according to NDTV. PolyNetwork, a platform that allows users to move tokens between multiple blockchains, show more ...
Several fake cloud-mining apps have been identified in Google Play Store that mostly focus on delivering expensive subscription services, according to Trend Micro. The applications address users new to cryptomining and were designed to get people to invest in cloud mining operations. The apps did not perform actual show more ...
Following a series of disruptive and headline-grabbing ransomware attacks on corporations in the United States over the past several months, the Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) has released a list of suggestions to prevent and respond to these sorts of show more ...
Older versions of BlackBerry's QNX Real-Time Operating System (RTOS) are vulnerable to a significant vulnerability allowing threat actors to take complete control and damage a wide range of devices, including industrial equipment, medical equipment, and cars. More than 195 million BlackBerry QNX-based vehicles show more ...
Security solutions for businesses are constantly improving, forcing cybercriminals to spend more time and money on breaking into corporate networks — and, increasingly, relying on social engineering. Exploiting the human factor and making use of readily available contact info (such as for HR and PR staff), crooks show more ...
The education sector in India was attacked significantly more compared to other industries in the month of July globally, experiencing 5,196 attacks per week on average, as per a new report.
A second unofficial patch for the Windows PetitPotam NTLM relay attack has been released by 0patch to fix further issues not addressed by Microsoft's official security update.
InkySquid ensnared one of the top North Korea-focused news sites, the Daily NK, to launch a watering hole attack and infect visitors with malware. The group is abusing old vulnerabilities in IE and Microsoft Edge and using legitimate-looking code.
IISerpent is executed as a malicious extension for Internet Information Services (IIS) web servers. It uses dubious tactics to manipulate Search Engine Result Pages (SERPs).
The US military created a vast database of biometric data — one report suggests it had a goal of 25 million entries — as part of its effort to track terrorists in Afghanistan.
New research by Absolute Software reveals the significant management and security issues faced by K-12 school IT teams with the rise in digital learning and widespread adoption of 1:1 device programs.
The vulnerability, tracked as CVE-2021-27032, exists in a software component common to most Autodesk products and impacts nearly all organizations using licensed Autodesk software in any capacity.
The online influence operation, which is being linked to the CCP, is seemingly a response to BBC’s reporting on human rights abuses against Uyghur Muslims and state-backed misinformation campaigns.
The attackers can, for example, use this social engineering tactic to collect personal information and resumes from professionals who believe they are applying to a legitimate company.
The mysterious cybercriminal who stole more than $600 million in cryptocurrencies from Poly Network has been offered the role of Chief Security Advisor at the Chinese blockchain platform.
An Ohio man who was fined $60 million last year for violating anti-money laundering laws pleaded guilty to moving hundreds of millions of dollars in cryptocurrency on behalf of dark web marketplaces.
Researchers at Cofense observed a phishing campaign imitating a well-known banking service, releasing fake remittance payment documents, in a bid to exfiltrate users’ personal data.
Qurium reported that the attackers launched billions of “malicious web requests” comprising application-layer web floods, which is a form of DDoS (Distributed Denial of Service) attack.
Shipping ports have become significantly more reliant on robotic operations and digitized inventory rather than human labor, making them particularly easy to disrupt through cyberattacks.
The organizations confirmed that no data of tenants or staff were accessed, but a 'small amount' of data was compromised, which resulted in the systems being taken offline as a precautionary measure.
As states look to modernize outdated systems used to process claims, cybersecurity is a key concern, said Matt Pincus, the director of government affairs at the National Association of State CIOs.
Phishing attacks have not only increased in volume between Q1 and Q2 but have also become more advanced, with campaigns becoming more customized to launch targeted attacks against users.
Mozi, a P2P botnet that targets IoT devices, has gained new capabilities that allow it to achieve persistence on network gateways manufactured by Netgear, Huawei, and ZTE, according to new findings.
The exposed information included name, address, email, gender, ethnicity, and date of birth, but it did not include medical information or financial information, according to state officials.
This cyber awareness initiative is led by Cyber.org, the academic branch of the Cyber Innovation Center, a research foundation promoting research, education, and technical innovation.
ShinyHunters, the same threat actor that posted T-Mobile users’ data for sale just days ago, is now selling 70 million records that allegedly belong to another mobile service provider – AT&T.
Blockchain security firm CertiK raised $24 million in an extension of its Series B round that was led by Tiger Global Management and GL Ventures. This brings its total fundraising to over $70 million.
ShadowPad, an infamous Windows backdoor that allows attackers to download further malicious modules or steal data, has been put to use by five different Chinese threat clusters since 2017.
Just over 70 of The Spaghetti Detective's users were able to control others' 3D printing devices as a result – something the service said it doesn't normally allow to happen.
Cloudflare said this attack peaked at 17.2 million HTTP requests/second (rps), a figure that the company described as almost three times larger than any previously reported volumetric DDoS attack.
The Internet Systems Consortium (ISC) this week publicly announced the availability of patches for a high-severity denial-of-service (DoS) vulnerability affecting its BIND DNS software.
The authentication protocols used by security systems must be flawless. But there’s no such thing as a flawless system, and implementation errors can lead to hazardous security vulnerabilities.
Microsoft decided to address this EoP bug, reaching out to Project Zero to let the researchers know that it had decided to work on the issue despite initially stating that it was “out of scope.”
FluBot is a type of malware targeting Android users, but iPhone users can also receive messages. It tells the receiver they missed a call or have a new voicemail, providing a fake link to listen.
T-Mobile said on Friday that an ongoing investigation revealed that hackers accessed information of an additional 5.3 million customers, bringing the total number to more than 53 million.
This week, a threat actor began emailing recipients, telling them that their iPhone device was hacked with a 'zero-click' vulnerability to install the Pegasus spyware software.
This Metasploit module exploits a vulnerability on Microsoft Exchange Server that allows an attacker to bypass the authentication, impersonate an arbitrary user, and write an arbitrary file to achieve remote code execution. By taking advantage of this vulnerability, you can execute arbitrary commands on the remote show more ...
This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
Online Traffic Offense Management System version 1.0 suffers from a remote SQL injection vulnerability.
NetModule Router Software versions prior to 4.3.0.113, 4.4.0.111, and 4.5.0.105 suffer from insecure password handling and session fixation vulnerabilities.
Laundry Booking Management System version 1.0 suffers from a remote SQL injection vulnerability.
Laundry Booking Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
A critical vulnerability in Cisco Small Business Routers will not be patched by the networking equipment giant, since the devices reached end-of-life in 2019. Tracked as CVE-2021-34730 (CVSS score: 9.8), the issue resides in the routers' Universal Plug-and-Play (UPnP) service, enabling an unauthenticated, remote attacker to execute arbitrary code or cause an affected device to restart
Mozi, a peer-to-peer (P2P) botnet known to target IoT devices, has gained new capabilities that allow it to achieve persistence on network gateways manufactured by Netgear, Huawei, and ZTE, according to new findings. "Network gateways are a particularly juicy target for adversaries because they are ideal as initial access points to corporate networks," researchers at Microsoft Security Threat
A Nigerian threat actor has been observed attempting to recruit employees by offering them to pay $1 million in bitcoins to deploy Black Kingdom ransomware on companies' networks as part of an insider threat scheme. "The sender tells the employee that if they're able to deploy ransomware on a company computer or Windows server, then they would be paid $1 million in bitcoin, or 40% of the
Web infrastructure and website security company Cloudflare on Thursday disclosed that it mitigated the largest ever volumetric distributed denial of service (DDoS) attack recorded to date. The attack, launched via a Mirai botnet, is said to have targeted an unnamed customer in the financial industry last month. "Within seconds, the botnet bombarded the Cloudflare edge with over 330 million
ShadowPad, an infamous Windows backdoor that allows attackers to download further malicious modules or steal data, has been put to use by five different Chinese threat clusters since 2017. "The adoption of ShadowPad significantly reduces the costs of development and maintenance for threat actors," SentinelOne researchers Yi-Jhen Hsieh and Joey Chen said in a detailed overview of the malware,
