Source: www.bitdefender.com – Author: Graham Cluley Yamaha Corporation, the world’s largest producer of musical equipment, has confirmed that has suffered a “cybersecurity incident” during which hackers...
Day: July 27, 2023
New Realst Mac malware, disguised as blockchain games, steals cryptocurrency wallets – Source: grahamcluley.com
Source: grahamcluley.com – Author: Graham Cluley Fake blockchain games, that are being actively promoted by cybercriminals on social media, are actually designed to infect the computers...
Crooks pwned your servers? You’ve got four days to tell us, SEC tells public companies – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Public companies that suffer a computer crime likely to cause a “material” hit to an investor will soon face a...
Russia throws founder of infosec biz Group-IB in the clink for treason – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register A Russian court has sentenced Ilya Sachkov, the founder of security research house Group-IB, to 14 years in a maximum-security...
Ambulance patient records system hauled offline for cyber-attack probe – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Several UK NHS ambulance organizations have been struggling to record patient data and pass it to other providers following a...
Sneaky Python package security fixes help no one – except miscreants – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Python security fixes often happen through “silent” code commits, without an associated Common Vulnerabilities and Exposures (CVE) identifier, according to...
Ivanti plugs critical bug – but not before it was used against Norwegian government – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register A critical security flaw in Ivanti’s mobile endpoint management code was exploited and used to compromise 12 Norwegian government agencies before...
Apple patches exploited bugs in iPhones plus other holes – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Apple has released fixes for several security flaws that affect its iPhones, iPads, macOS computers, and Apple TV and watches,...
TETRA radio comms used by emergency heroes easily cracked, say experts – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Updated Midnight Blue, a security firm based in the Netherlands, has found five vulnerabilities that affect Terrestrial Trunked Radio (TETRA),...
Terrestrial Trunked Radio System Vulnerable to Leakage and Message Injection – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Livia Gyongyoși Dutch researchers revealed 5 vulnerabilities in the Terrestrial Trunked Radio (TETRA) that could expose government organizations and critical infrastructure communication...
Norwegian Government`s System Breached over Ivanti EPMM Zero-Day – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Livia Gyongyoși The Norwegian National Security Authority (NSM) revealed that threat actors exploited the CVE-2023-35078 zero-day vulnerability in Ivanti’s Endpoint Manager Mobile...
What Is Vulnerability Scanning: Definition, Types, Best Practices – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Cristian Neagu What Is Vulnerability Scanning? Vulnerability scanning is the process of discovering, analysing, and reporting security flaws and vulnerabilities. Alongside vulnerability assessment,...
New Vulnerability Puts 926,000 MikroTik Routers at Risk! Users Urged to Patch – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Livia Gyongyoși Researchers found a critical ‘Super Admin’ privilege elevation vulnerability that impacts MikroTik devices. Over 900,000 RouterOS routers are at risk...
Yamaha Confirms Cyber Attack on Its Canadian Division – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Madalina Popovici Yamaha’s Canadian music division has confirmed that it fell victim to a recent cyberattack, as two separate ransomware groups claimed...
In Response to Widespread Attacks Heimdal Offers Free Ransomware Protection to NHS Trusts – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Danny Mitchell Heimdal is offering NHS Trusts free ransomware protection licenses to tackle the rising wave of cyber-attacks. The public sector’s battle...
Repeatable VEC Attacks Target Critical Infrastructure – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 The threat of vendor email compromise (VEC) attacks has escalated, with recent data showing a sharp increase in such cyber-threats. According...
VMware Patches Vulnerability Exposing Admin Credentials – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 VMware addressed a vulnerability on Tuesday that impacts its Tanzu Application Service for VMs and Isolation Segment products. The flaw, tracked as CVE-2023-20891, poses...
Group-IB Founder Sentenced in Russia to 14 Years for Treason – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 The Moscow City Court has sentenced Ilya Sachkov, the founder of cybersecurity provider Group-IB, to 14 years in prison for ‘state...
Dark Web Markets Offer New FraudGPT AI Tool – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 Cybersecurity experts have identified a new AI tool called “FraudGPT,” circulating on the Dark Web and Telegram channels since July 22 2023. FraudGPT...
Ransomware Attacks Skyrocket in Q2 2023 – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 Ransomware attacks surged by 74% in Q2 2023 compared to the first three months of the year, a new report has...
Education Sector Has Highest Share of Ransomware Victims – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 The education sector recorded a higher share of ransomware victims than any other in 2022, according to a new report from...
Over 900,000 MikroTik Routers Exposed to Critical Bug – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 Security experts have warned that hundreds of thousands of routers produced by Latvian networking equipment maker MikroTik are vulnerable to a...
Industry Coalition Calls For Enhanced Network Resilience – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 A new industry group of big-name vendors has launched with a mission to improve network and hardware resilience worldwide. Coordinated by...
Two ambulance services in UK lost access to patient records after a cyber attack on software provider – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Swedish software firm Ortivus suffered a cyberattack that has resulted in at least two British ambulance services losing access to...
FraudGPT, a new malicious generative AI tool appears in the threat landscape – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini FraudGPT is another cybercrime generative artificial intelligence (AI) tool that is advertised in the hacking underground. Generative AI models are...
CISA adds Ivanti EPMM flaw to its Known Exploited Vulnerabilities catalog – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini US CISA added actively exploited Ivanti ‘s Endpoint Manager Mobile (EPMM) vulnerability to its Known Exploited Vulnerabilities catalog. US Cybersecurity...
Over 500K MikroTik RouterOS systems potentially exposed to hacking due to critical flaw – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Experts warn of a severe privilege escalation, tracked as CVE-2023-30799, in MikroTik RouterOS that can be exploited to hack vulnerable devices....
Atlassian addressed 3 flaws in Confluence and Bamboo products – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Atlassian addressed three vulnerabilities in its Confluence Server, Data Center, and Bamboo Data Center products that can lead to remote code...
VMware addressed an information disclosure flaw in VMware Tanzu Application Service for VMs and Isolation Segment – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini VMware fixed an information disclosure flaw in VMware Tanzu Application Service for VMs and Isolation Segment that exposed CF API...
What happens if AI is wrong? – Week in security with Tony Anscombe – Source:
Source: – Author: 1 Responses generated by ChatGPT about individual people could be misleading or harmful or spill their personal information. What are the takeaways for...