Experts discovered a privilege escalation issue in popular Umbraco CMS
Experts discovered a vulnerability in the popular CMS Umbraco that could allow low privileged users to escalate privileges to “admin.”...
News
Experts found critical flaws in Rockwell FactoryTalk AssetCentre
Rockwell Automation has recently addressed nine critical vulnerabilities in its FactoryTalk AssetCentre product with the release of version v11. The...
A week in security (March 29 – April 4)
Last week on Malwarebytes Labs, our podcast featured Malwarebytes senior security researcher JP Taggart, who talked to us about why you need...
BIG-IP Vulnerability – CVE-2021-22986 – PoC
Vuln Impact This vulnerability allows for unauthenticated attackers with network access to the iControl REST interface, through the BIG-IP management...
BCPS hit by Conti Ransomware Gang, Hackers Demanded $40 Million Ransom
Several weeks ago, the Conti ransomware gang encrypted the systems at Broward County Public Schools and took steps to release...
Hackers Exploit Windows BITS Feature To Launch Malware Attack
Microsoft released the BITS (Background Intelligent Transfer Service) in Windows XP to coordinate and ease uploading and downloading files with...
Child Tweets Gibberish from US Nuclear Agency Account
An unintelligible tweet sent out from the official account of U.S. Strategic Command in charge of the nation’s nuclear arsenal...
Molson Coors “Cyberattack Incident” Could Cost Company $140 Million
The popular beer brands producers in the United States such as Molson Canadian, Coors Light, Miller Lite, Carling, Blue Moon,...
Data Breach at Facebook Leaks Information of 533 Million Users
A major privacy violation by hackers allegedly took the data of almost 533 million users of Facebook from 106 countries...
The leap of a Cycldek-related threat actor
Introduction In the nebula of Chinese-speaking threat actors, it is quite common to see tools and methodologies being shared. One...
A Quick Look Into Cloud Security Posture Management (CSPM)
The cloud security solutions market is growing rapidly, and there are many types of solutions to support your specific business...
InsightIDR’s Log Search: Recent Enhancements and Upcoming Investments
Log data is critical to ensuring that you have full visibility into what’s going on across your environment. Alongside endpoint...
What’s New in InsightAppSec and tCell: Q1 2021 in Review
2021 is off and running! The big question on the corporate world’s mind is, of course, “What will work life...
2,5M+ users can check whether their data were exposed in Facebook data leak
You can check if your personal information is included in the Facebook data leak by querying the data breach notification...
33.4% of ICS computers hit by a cyber attack in H2 2020
H2 2020 – Kaspersky observed an increase in ransomware attacks on industrial control system (ICS) systems in developed countries. Cybersecurity...
Firmware attacks, a grey area in cybersecurity of organizations
A new report published by Microsoft revealed that 80% of global enterprises were victims of a firmware-focused cyberattack. Microsoft recently...
More Businesses are Accepting Bitcoin
Bitcoin is turning into an undeniably well-known payment alternative among numerous organizations. Fast-food chains, large tech organizations, and major beverage...
533 Million Facebook Users’ Phone Numbers And Personal Data Leaked Online
On Saturday, a user turned to a low-level hacking forum to leak the personal information of hundreds of millions of...
Hackers Tap Into Home Security Cameras, Record Sex Tapes Too Sell Online
Chinese hackers are infiltrating into residents' house security cameras, shooting them having sex and selling the footage online. However shocking...
Goodbye Cryptocurrencies: Number of ‘Dead’ Coins Increased by 35% Over Last Year
Coinopsy.com, an online firm that tracks dead cryptocurrencies has published a data report regarding the number of dead cryptocurrencies or...
Tala Research Shows that European Telecommunication Websites Expose Sensitive Customer Data
In 7 EU countries, Tala assessed the websites of the leading MSPs for the European top mobile providers, data exposure...
Malware attack on Applus blocked vehicle inspections in some US states
A malware attack against vehicle inspection services provider Applus Technologies paralyzed preventing vehicle inspections in eight US states. Applus Technologies...
Security Affairs newsletter Round 308
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Clop Ransomware operators plunder US universities
Clop ransomware gang leaked online data stolen from Stanford Medicine, University of Maryland Baltimore, and the University of California. Clop...
