THN Webinar: 3 Research-Backed Ways to Secure Your Identity Perimeter
Think of the typical portrayal of a cyberattack. Bad guy pounding furiously on a keyboard, his eyes peeking out from...
A New Security Category Addresses Web-borne Threats
In the modern corporate IT environment, which relies on cloud connectivity, global connections and large volumes of data, the browser...
LockBit ransomware claims Essendant attack, company says “network outage”
LockBit ransomware has claimed a cyber attack on Essendant, a wholesale distributer of office products after a "significant" and ongoing...
FBI: Ransomware hit 860 critical infrastructure orgs in 2022
The Federal Bureau of Investigation (FBI) revealed in its 2022 Internet Crime Report that ransomware gangs breached the networks of...
US federal agency hacked using old Telerik bug to steal data
Last year, a U.S. federal agency's Microsoft Internet Information Services (IIS) web server was hacked by exploiting a critical .NET...
Critical Microsoft Outlook bug PoC shows how easy it is to exploit
Security researchers have shared technical details for exploiting a critical Microsoft Outlook vulnerability for Windows (CVE-2023-23397) that allows hackers to remotely...
Hacker selling data allegedly stolen in US Marshals Service hack
A threat actor is selling on a Russian-speaking hacking forum what they claim to be hundreds of gigabytes of data...
CISA warns of Adobe ColdFusion bug exploited as a zero-day
CISA has added a critical vulnerability impacting Adobe ColdFusion versions 2021 and 2018 to its catalog of security bugs exploited...
NordVPN open sources its Linux VPN client and libraries
Nord Security (Nord) has released the source code of its Linux NordVPN client and associated networking libraries in the hopes...
Winter Vivern APT hackers use fake antivirus scans to install malware
An advanced hacking group named 'Winter Vivern' targets European government organizations and telecommunication service providers to conduct espionage. The group's...
Mozilla Firefox gets built-in Firefox Relay controls
Mozilla has announced the integration of Firefox Relay, an email protection system that helps users evade trackers and spammers, directly...
NordVPN open sources its Linux VPN client and libraries
Nord Security (Nord) has released the source code of its Linux NordVPN client and associated networking libraries in the hopes...
Latitude cyberattack leads to data theft at two service providers
Latitude Financial Services (Latitude) has disclosed a data breach after suffering a cyberattack, causing the company to shut down internal...
Microsoft support ‘cracks’ Windows for customer after activation fails
In an unexpected twist, a Microsoft support engineer resorted to running an unofficial 'crack' on a customer's Windows PC after a genuine...
Conti-based ransomware ‘MeowCorp’ gets free decryptor
A decryption tool for a modified version of the Conti ransomware could help hundreds of victims recover their files for...
Convincing Twitter ‘quote tweet’ phone scam targets bank customers
A convincing Twitter scam is targeting bank customers by abusing the quote-tweet feature, as observed by BleepingComputer. What makes this scam stand out is...
Adobe Acrobat Sign abused to push Redline info-stealing malware
Cybercriminals are abusing Adobe Acrobat Sign, an online document signing service, to distribute info-stealing malware to unsuspecting users. The service...
FakeCalls Android malware returns with new ways to hide on phones
Android malware 'FakeCalls' is circulating again in South Korea, imitating phone calls for over 20 financial organizations and attempting to...
BianLian ransomware gang shifts focus to pure data extortion
The BianLian ransomware group has shifted its focus from encrypting its victims' files to only exfiltrating data found on compromised...
Google finds 18 zero-day vulnerabilities in Samsung Exynos chipsets
Project Zero, Google's zero-day bug-hunting team, discovered and reported 18 zero-day vulnerabilities in Samsung’s Exynos chipsets used in mobile devices,...
Fortinet zero-day attacks linked to suspected Chinese hackers
A suspected Chinese hacking group has been linked to a series of attacks on government organizations exploiting a Fortinet zero-day...
Microsoft shares script to fix WinRE BitLocker bypass flaw
Microsoft has released a script to make it easier to patch a BitLocker bypass security vulnerability in the Windows Recovery...
Adobe Dimension code execution | CVE-2023-26336
NAME__________Adobe Dimension code executionPlatforms Affected:Adobe Dimension 3.4.7Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe Dimension could allow a remote attacker to execute arbitrary code...
Adobe Dimension code execution | CVE-2023-26328
NAME__________Adobe Dimension code executionPlatforms Affected:Adobe Dimension 3.4.7Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe Dimension could allow a remote attacker to execute arbitrary code...
