Broward Health suffered a data breach that impacted +1.3 million people
The Broward Health public health system disclosed a massive data breach that has impacted more than 1.3 million individuals. The...
hacking
‘doorLock’ – A persistent denial of service flaw affecting iOS 15.2 – iOS 14.7
Expert found a new persistent DoS vulnerability, dubbed ‘doorLock,’ affecting the Apple HomeKit in iOS 14.7 through 15.2. Security researchers...
RPC Firewall – Stopping Lateral Movement via the RPC Firewall
I Need More InformationCheck out our RPC Firewall blog post to gain better understanding of RPC, RPC attacks and the...
Israeli Media Outlets hacked on the anniversary of Soleimani killing
Threat actors hacked the website of Jerusalem Post and the Twitter account of Maariv outlet on Soleimani killing anniversary. Threat actors have taken...
SEGA Europe left AWS S3 bucket unsecured exposing data and infrastructure to attack
SEGA Europe inadvertently left users’ personal information publicly accessible on Amazon Web Services (AWS) S3 bucket. SEGA Europe inadvertently left users’ personal...
The worst cyber attacks of 2021
Which are the cyber attacks of 2021 that had the major impact on organizations worldwide in terms of financial losses...
Msmailprobe – Office 365 And Exchange Enumeration
Office 365 and Exchange EnumerationIt is widely known that OWA (Outlook Webapp) is vulnerable to time-based user enumeration attacks. This...
Microsoft rolled out emergency fix for Y2k22 bug in Exchange servers
Microsoft released an emergency patch to fix the Y2k22 bug that is breaking email delivery on on-premise Microsoft Exchange servers....
Exclusive: NASA Director Twitter account hacked by Powerful Greek Army
The Twitter account of NASA Director Parimal Kopardekar (@nasapk) was hacked by the Powerful Greek Army group. The Twitter account...
Lsarelayx – NTLM Relaying For Windows Made Easy
lsarelayx is system wide NTLM relay tool designed to relay incoming NTLM based authentication to the host it is running...
Lapsus$ ransomware gang hits Impresa, Portugal’s largest media conglomerate
The Lapsus$ ransomware hit Impresa, the largest media conglomerate in Portugal and the owner of SIC and Expresso. The Lapsus$...
North Korea-linked threat actors stole $1.7 billion from cryptocurrency exchanges
North Korea-linked threat actors are behind some of the largest cyberattacks against cryptocurrency exchanges. North Korea-linked APT groups are suspected...
RiotPot – Resilient IoT And Operational Technology Honeypot
RIoTPot is an interoperable medium interaction honeypot, primarily focused on the emulation IoT and OT protocols, although, it is also...
Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021
According to a report published by Invezz, the number of crypto security breaches increased by up 850% in the last...
Security Affairs newsletter Round 347
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Y2k22 bug in Microsoft Exchange causes failure in email delivery
Y2k22 bug is causing Microsoft Exchange on-premise servers to fail in delivering email starting on January 1st, 2022. Microsoft Exchange...
Skrull – A Malware DRM, That Prevents Automatic Sample Submission By AV/EDR And Signature Scanning From Kernel
Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers...
Security Affairs most-read cyber stories of 2021
Which are the most-read cyber stories of 2021? This post includes Top Posts for the last 365 days. Why Edward...
PulseTV discloses potential credit card breach
U.S. online store PulseTV disclosed a potential credit card data breach, more than 200,000 customers have been impacted. U.S. online...
PMAT-labs – Labs For Practical Malware Analysis And Triage
Welcome to the labs for Practical Cosmo?You may be wondering, why is there a picture of a handsome cat in...
The Have I Been Pwned service now includes 441K accounts stolen by RedLine malware
The Have I Been Pwned data breach notification service now includes credentials for 441K accounts that were stolen by RedLine...
Multiple flaws in Netgear Nighthawk R6700v3 router are still unpatched
Researchers discovered multiple high-risk vulnerabilities affecting the latest firmware version for the Netgear Nighthawk R6700v3 router. Researchers from Tenable have...
How to implant a malware in hidden area of SSDs with Flex Capacity feature
Researchers devised a series of attacks against SSDs that could allow to implant malware in a location that is not...
Flaws in DataVault encryption software impact multiple storage devices
Researchers found several vulnerabilities in third-party encryption software that is used by multiple storage devices from major vendors. Researcher Sylvain...
