Cisco Warns Of Critical Rce Flaw In Communications Software
Cisco is warning that several of its Unified Communications Manager (CM) and Contact Center Solutions products are vulnerable to a...
cybersecurity
Iphone Apps Abuse Ios Push Notifications To Collect User Data
Numerous iOS apps are using background processes triggered by push notifications to collect user data about devices, potentially allowing the...
Blackwood Hackers Hijack Wps Office Update To Install Malware
A previously unknown advanced threat actor tracked as 'Blackwood' is using sophisticated malware called NSPX30 in cyberespionage attacks against companies...
23andme Data Breach Hackers Stole Raw Genotype Data Health Reports
Genetic testing provider 23andMe confirmed that hackers stole health reports and raw genotype data of customers affected by a credential...
Russian Trickbot Malware Dev Sentenced To 64 Months In Prison
Russian national Vladimir Dunaev has been sentenced to five years and four months in prison for his role in creating...
Tesla Hacked Again 24 More Zero Days Exploited At Pwn2own Tokyo
Security researchers hacked the Tesla infotainment system and demoed 24 more zero-days on the second day of the Pwn2Own Automotive...
Hpe Russian Hackers Breached Its Security Teams Email Accounts
Hewlett Packard Enterprise (HPE) disclosed today that suspected Russian hackers known as Midnight Blizzard gained access to the company's Microsoft...
Global Fintech Firm Equilend Offline After Recent Cyberattack
New York-based global financial technology firm EquiLend says its operations have been disrupted after some systems were taken offline in...
Over 5 300 Gitlab Servers Exposed To Zero Click Account Takeover Attacks
Over 5,300 internet-exposed GitLab instances are vulnerable to CVE-2023-7028, a zero-click account takeover flaw GitLab warned about earlier this month....
Tesla Hacked 24 Zero Days Demoed At Pwn2own Automotive 2024
Security researchers hacked a Tesla Modem and collected awards of $722,500 on the first day of Pwn2Own Automotive 2024 for...
How To Secure Ad Passwords Without Sacrificing End User Experience
Hackers are constantly attempting to steal passwords, with Microsoft tracking 1,287 password attacks every second in 2022. If successful, the...
Vextrio Tds Inside A Massive 70 000 Domain Cybercrime Operation
A previously unknown traffic distribution system (TDS) named 'VexTrio' has been active since at least 2017, aiding 60 affiliates in...
Uk Says Ai Will Empower Ransomware Over The Next Two Years
The United Kingdom's National Cyber Security Centre (NCSC) warns that artificial intelligence (AI) tools will have an adverse near-term impact...
Water Services Giant Veolia North America Hit By Ransomware Attack
Veolia North America, a subsidiary of transnational conglomerate Veolia, disclosed a ransomware attack that impacted systems part of its Municipal Water...
Jasons Deli Says Customer Data Exposed In Credential Stuffing Attack
Jason's Deli is warning of a data breach in notifications sent to customers of its online platform stating that their...
Us Uk Australia Sanction Revil Hacker Behind Medibank Data Breach
The Australian, US, and UK governments have announced sanctions for Aleksandr Gennadievich Ermakov, a Russian national considered responsible for the 2022...
X Adds Passkeys Support For Ios Users In The United States
X, formerly Twitter, announced today that iOS users in the United States can now log into their accounts using passkeys....
Exploit Released For Fortra Goanywhere Mft Auth Bypass Bug
Exploit code is now available for a critical authentication bypass vulnerability in Fortra's GoAnywhere MFT (Managed File Transfer) software that...
Fortra Warns Of New Critical Goanywhere Mft Auth Bypass Patch Now
Fortra is warning of a new authentication bypass vulnerability impacting GoAnywhere MFT (Managed File Transfer) versions before 7.4.1 that allows...
Trello Api Abused To Link Email Addresses To 15 Million Accounts
An exposed Trello API allows linking private email addresses with Trello accounts, enabling the creation of millions of data profiles...
Kasseika Ransomware Uses Antivirus Driver To Kill Other Antiviruses
A recently uncovered ransomware operation named 'Kasseika' has joined the club of threat actors that employs Bring Your Own Vulnerable...
New Cybersecurity Governance Code Puts Cyber Risks on Boardroom Agenda
The UK government has published a new Code of Practice on cybersecurity governance, targeting directors and other senior business leaders.The...
French Watchdog Slams Amazon with €32m Fine for Spying on Workers
Amazon France Logistique, a subsidiary of the e-commerce giant that manages its large warehouses in France, has been fined €32m...
Trezor Support Site Breach Exposes Personal Data Of 66 000 Customers
Trezor issued a security alert after identifying a data breach that occurred on January 17 due to unauthorized access to their...
