Critical Vulnerability in Zoom Products for Windows
Zoom has released security updates to address a critical vulnerability (CVE-2024-24691) in their products. The vulnerability has a Common Vulnerability...
News
Ubuntu Command Not Found Tool Can Be Abused To Spread Malware
A logic flaw between Ubuntu's 'command-not-found' package suggestion system and the snap package repository could enable attackers to promote malicious...
German Battery Maker Varta Halts Production After Cyberattack
Battery maker VARTA AG announced yesterday that it was targeted by a cyberattack that forced it to shut down IT...
Zoom Patches Critical Privilege Elevation Flaw In Windows Apps
The Zoom desktop and VDI clients and the Meeting SDK for Windows are vulnerable to an improper input validation flaw...
Hackers Mint 179 Billion Crypto Tokens From Playdapp Gaming Platform
Hackers are believed to have used a stolen private key to mint and steal over 1.79 billion PLA tokens, a...
Duckduckgo Browser Gets End To End Encrypted Sync Feature
The DuckDuckGo browser has unveiled a new end-to-end encrypted Sync & Backup feature that lets users privately and securely synchronize...
Microsoft New Critical Exchange Bug Exploited As Zero Day
Microsoft warned today in an updated security advisory that a critical vulnerability in Exchange Server was exploited as a zero-day before...
Microsoft Exchange Update Enables Extended Protection By Default
Microsoft is automatically enabling Windows Extended Protection on Exchange servers after installing this month's 2024 H1 Cumulative Update (aka CU14)....
Lockbit Claims Ransomware Attack On Fulton County Georgia
The LockBit ransomware gang claims to be behind the recent cyberattack on Fulton County, Georgia, and is threatening to publish...
New Critical Microsoft Outlook Rce Bug Is Trivial To Exploit
Update February 14, 16:50 EST: Article and title revised after Microsoft retracted the "active exploitation" update added to the CVE-2024-21413...
Trans Northern Pipelines Investigating Alphv Ransomware Attack Claims
Trans-Northern Pipelines (TNPI) has confirmed its internal network was breached in November 2023 and that it's now investigating claims of...
Microsoft Fixes Two Zero-Days in February Patch Tuesday
Microsoft has landed system administrators with a busy February after releasing updates for 73 vulnerabilities, including two zero-day flaws currently...
Romantic AI Chatbots Fail the Security and Privacy Test
Experts have warned users of AI-powered “relationship” chatbots that their data and privacy are at risk, after failing all 11...
Water Hydra’s Zero-Day Attack Chain Targets Financial Traders
The Trend Micro Zero Day Initiative (ZDI) has recently unearthed a critical vulnerability, identified as CVE-2024-21412, which they’ve dubbed ZDI-CAN-23100. The...
Iranian Hackers Target Israel and US to Sway Public Opinion in Hamas Conflict
Google’s Threat Analyst Group has confirmed that Iran-backed hackers have used their cyber capabilities to undercut public support for the Israel-Hamas...
Cybersecurity Spending Expected to be Slashed in 41% of SMEs
Cybersecurity spending is predicted to be cut by 41% of SMEs over the coming year amid the challenging economic environment,...
PII Input Sparks Cybersecurity Alarm in 55% of DLP Events
A substantial 55% of recent Data Loss Prevention (DLP) events have involved attempts to input personally identifiable information (PII), while...
Ransomware Attack Forces 100 Romanian Hospitals To Go Offline
Update: The article and title have been revised to reflect the increasing number of impacted hospitals. 100 hospitals across Romania...
Bumblebee Malware Attacks Are Back After 4 Month Break
The Bumblebee malware has returned after a four-month vacation, targeting thousands of organizations in the United States in phishing campaigns....
Integris Health Says Data Breach Impacts 24 Million Patients
Integris Health has reported to U.S. authorities that the data breach it suffered last November exposed personal information belonging to...
Hackers Steal 290 Million In Crypto From Playdapp Gaming Platform
Hackers are believed to have used a stolen private key to mint and steal over $290 million in PLA tokens,...
Prudential Financial Breached In Data Theft Cyberattack
Prudential Financial has disclosed that its network was breached last week, with the attackers stealing employee and contractor data before being blocked...
Hackers Used New Windows Defender Zero Day To Drop Darkme Malware
Microsoft has patched today a Windows Defender SmartScreen zero-day exploited in the wild by a financially motivated threat group to...
Microsoft February 2024 Patch Tuesday Fixes 2 Zero Days 73 Flaws
Today is Microsoft's February 2024 Patch Tuesday, which includes security updates for 73 flaws and two actively exploited zero-days. This...
