The Unknown Risks of The Software Supply Chain: A Deep-Dive
In a world where more & more organizations are adopting open-source components as foundational blocks in their application's infrastructure, it's...
Patch Your GoAnywhere MFT Immediately – Critical Flaw Lets Anyone Be Admin
A critical security flaw has been disclosed in Fortra's GoAnywhere Managed File Transfer (MFT) software that could be abused to...
Abyss Ransomware Victim: synergyfinancialgrp[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Abyss Ransomware Victim: micrometals[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Jasons Deli Says Customer Data Exposed In Credential Stuffing Attack
Jason's Deli is warning of a data breach in notifications sent to customers of its online platform stating that their...
Water Services Giant Veolia North America Hit By Ransomware Attack
Veolia North America, a subsidiary of transnational conglomerate Veolia, disclosed a ransomware attack that impacted systems part of its Municipal Water...
Us Uk Australia Sanction Revil Hacker Behind Medibank Data Breach
The Australian, US, and UK governments have announced sanctions for Aleksandr Gennadievich Ermakov, a Russian national considered responsible for the 2022...
Kasseika Ransomware Uses Antivirus Driver To Kill Other Antiviruses
A recently uncovered ransomware operation named 'Kasseika' has joined the club of threat actors that employs Bring Your Own Vulnerable...
Trello Api Abused To Link Email Addresses To 15 Million Accounts
An exposed Trello API allows linking private email addresses with Trello accounts, enabling the creation of millions of data profiles...
Fortra Warns Of New Critical Goanywhere Mft Auth Bypass Patch Now
Fortra is warning of a new authentication bypass vulnerability impacting GoAnywhere MFT (Managed File Transfer) versions before 7.4.1 that allows...
Exploit Released For Fortra Goanywhere Mft Auth Bypass Bug
Exploit code is now available for a critical authentication bypass vulnerability in Fortra's GoAnywhere MFT (Managed File Transfer) software that...
X Adds Passkeys Support For Ios Users In The United States
X, formerly Twitter, announced today that iOS users in the United States can now log into their accounts using passkeys....
Apple Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...
Apple Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of...
LoanDepot Data Breach Hits 16.6 Million Customers
LoanDepot, one of the largest US-based retail mortgage lenders, has confirmed that around 16.6 million of its customers have had...
SEC Confirms SIM Swap Attack Behind X Account Takeover
A US regulator has confirmed that its official X (formerly Twitter) account was hijacked earlier this month after hackers were...
Australia Sanctions Russian Hacker Behind Medibank Breach
The Australian government has publicly named a Russian cybercriminal as responsible for the Medibank data breach, which affected 9.7 million...
Mega-Breach Database Exposes 26 Billion Records
A new 12TB database of 26 billion records has been found exposed online by security researchers, although its contents were...
New Cybersecurity Governance Code Puts Cyber Risks on Boardroom Agenda
The UK government has published a new Code of Practice on cybersecurity governance, targeting directors and other senior business leaders.The...
Hackers Target Atlassian Confluence With RCE Exploits
Security experts are observing attempts to exploit the remote code execution (RCE) vulnerability CVE-2023-22527 affecting outdated Atlassian Confluence servers. The company disclosed the...
Malicious npm Packages Used to Target GitHub Developer SSH Keys
Security researchers have uncovered two new malicious packages on the npm open source package manager that utilized GitHub to store...
French Watchdog Slams Amazon with €32m Fine for Spying on Workers
Amazon France Logistique, a subsidiary of the e-commerce giant that manages its large warehouses in France, has been fined €32m...
Zero-Day Vulnerability in Apple Products
Apple has released security updates to address a zero-day vulnerability (CVE-2024-23222) in their products. The vulnerability is reportedly being actively...
CISA: Oracle Releases Critical Patch Update Advisory for January 2024
Oracle Releases Critical Patch Update Advisory for January 2024 Oracle released its Critical Patch Update Advisory for January 2024 to...
