Source: www.securityweek.com – Author: Ionut Arghire Cybersecurity firm SentinelOne warns of an increase in the number of new ransomware families designed to target VMware ESXi that...
Day: May 12, 2023
Organizations Informed of Over a Dozen Vulnerabilities in Rockwell Automation Products – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Rockwell Automation customers have been informed this week about potentially serious vulnerabilities found and patched in several products. The timing...
CISA, FBI: Ransomware Gang Exploited PaperCut Flaw Against Education Facilities – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have raised the alarm on a...
France Punishes Clearview AI For Failing To Pay Fine – Source: www.securityweek.com
Source: www.securityweek.com – Author: AFP France’s privacy watchdog doled out further penalties to US firm Clearview AI Wednesday for failing to pay a 20-million-euro fine imposed...
Australian Enterprise Software Maker TechnologyOne Resumes Trading Following Hack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Australian enterprise resource planning solutions provider TechnologyOne halted trading for a couple of days this week after detecting unauthorized access...
1 Million WordPress Sites Impacted by Exploited Plugin Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Exploitation of a critical vulnerability in the Essential Addons for Elementor WordPress plugin began immediately after a patch was released,...
Secure Messaging Arrives on Twitter – Sort of. ‘Don’t Trust It Yet,’ Musk Warns – Source: www.securityweek.com
Source: www.securityweek.com – Author: Associated Press Twitter launched encrypted messaging Wednesday, offering select users the ability to communicate more securely. But its new service is much...
Black Basta Ransomware Attacks Global Technology Company ABB – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Madalina Popovici ABB, a leading provider of electrification and automation technology, has been hit by a Black Basta ransomware attack, which has...
XDR vs SIEM vs SOAR: A Comparison – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Andreea Chebac With the “detect early” and “respond fast” capabilities in your mind, you may wonder what to choose from the XDR...
What Is Privileged Identity Management (PIM)? – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Antonia Din When we talk about Privileged Access Management (PAM), Privileged Identity Management (PIM), Identity and Access Management (IAM), and other access...
Building Trustworthy AI – Source: www.schneier.com
Source: www.schneier.com – Author: Bruce Schneier Building Trustworthy AI We will all soon get into the habit of using AI tools for help with everyday problems...
Microsoft patches bypass for recently fixed Outlook zero-click bug – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Sergiu Gatlan Microsoft fixed a security vulnerability this week that could be used by remote attackers to bypass recent patches for a...
Stealthier version of Linux BPFDoor malware spotted in the wild – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A new, stealthier variant of the Linux malware ‘BPFDoor’ has been discovered, featuring more robust encryption and reverse shell communications....
Multinational tech firm ABB hit by Black Basta ransomware attack – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Lawrence Abrams Swiss multinational company ABB, a leading electrification and automation technology provider, has suffered a Black Basta ransomware attack, reportedly impacting...
Brightly warns of SchoolDude data breach exposing credentials – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Sergiu Gatlan U.S. tech company and Siemens subsidiary Brightly Software is notifying customers that their personal information and credentials were stolen by...
Babuk code used by 9 ransomware gangs to encrypt VMWare ESXi servers – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Sergiu Gatlan An increasing number of ransomware operations are adopting the leaked Babuk ransomware source code to create Linux encryptors targeting VMware...
WordPress Elementor plugin bug let attackers hijack accounts on 1M sites – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas One of WordPress’s most popular Elementor plugins, “Essential Addons for Elementor,” was found to be vulnerable to an unauthenticated privilege...
Google offers certificate in cybersecurity, no dorm room required – Source: www.techrepublic.com
Source: www.techrepublic.com – Author: Karl Greenberg Image: Sundry Photography/Adobe Stock While cyberattacks increased last year, with the trend continuing into 2023, there are still far too...
‘Chiplets’ are the new U.S. focus for innovation in tech – Source: www.cybertalk.org
Source: www.cybertalk.org – Author: gmack EXECUTIVE SUMMARY: Chiplets is a term used to refer to chips designed for higher performance. At this point, chiplet production is...
RSAC Fireside Chat: Keeping persistent email threats at bay requires deeper, cloud-layer vigilance – Source: www.lastwatchdog.com
Source: www.lastwatchdog.com – Author: bacohido By Byron V. Acohido Email remains by far the no.1 business communications tool. Meanwhile, weaponized email continues to pose a clear...
Akira ransomware – what you need to know – Source: www.tripwire.com
Source: www.tripwire.com – Author: Graham Cluley What is Akira? Akira is a new family of ransomware, first used in cybercrime attacks in March 2023. Akira? Haven’t...
A flaw in the Essential ‘Addons for Elementor’ WordPress plugin poses 1M sites at risk of hacking – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Experts warn of an unauthenticated privilege escalation flaw in the popular Essential ‘Addons for Elementor’ WordPress plugin. Essential ‘Addons for...
Experts share details of five flaws that can be chained to hack Netgear RAX30 Routers – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Researchers disclosed the details of five vulnerabilities that can be chained to take over some Netgear router models. Industrial and...
We are in the final! Please vote for Security Affairs and Pierluigi Paganini – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Dear readers and friends, once again we are in the final of the European Cybersecurity Blogger Awards 2022 and I...
Google will provide dark web monitoring to all US Gmail users and more – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Google announced the opening of the dark web monitoring report security feature to all Gmail users in the United States....
North Korea-linked APT breached the Seoul National University Hospital – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini The Korean National Police Agency (KNPA) warns that a North Korea-linked APT group had breached the Seoul National University Hospital...
A zero-click vulnerability in Windows allows stealing NTLM credentials – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Researchers shared technical details about a flaw in Windows MSHTML platform, tracked as CVE-2023-29324, that could be abused to bypass security protections. Cybersecurity...
Drug and alcohol tests of graduate paramedics revealed in Ambulance Victoria data breach – Source: www.theguardian.com
Source: www.theguardian.com – Author: Nino Bucci The confidential drug and alcohol test results of graduate paramedics were available for every Ambulance Victoria staff member to view...
Microsoft Authenticator to Enforce Number Matching – Source: www.darkreading.com
Source: www.darkreading.com – Author: Fahmida Y. Rashid, Managing Editor, Features, Dark Reading Multi-factor authentication is an essential element of identity and access management, but it is...