Source: www.securityweek.com – Author: Ionut Arghire Microsoft-owned code hosting platform GitHub on Tuesday announced that it paid out more than $1.57 million in rewards through its...
Author:
Chrome 116 Patches 26 Vulnerabilities – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Google on Tuesday announced the release of Chrome 116 to the stable channel with patches for 26 vulnerabilities, including 21...
2,000 Citrix NetScaler Instances Backdoored via Recent Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A threat actor has automated the exploitation of a recent Citrix vulnerability and has infected roughly 2,000 NetScaler instances with...
Hacker Forum Credentials Found on 120,000 PCs Infected With Info-Stealer Malware – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Israeli threat intelligence company Hudson Rock has identified credentials associated with cybercrime forums on roughly 120,000 computers infected with information...
1.5 Million Impacted by Ransomware Attack at Canadian Dental Service – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Canadian dental benefits administrator Alberta Dental Service Corporation (ADSC) has started informing roughly 1.47 million individuals that their personal information...
Colorado Health Agency Says 4 Million Impacted by MOVEit Hack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The Colorado Department of Health Care Policy and Financing (HCPF) has revealed that the personal information of millions of individuals...
US Cyber Safety Board to Review Cloud Attacks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The US government announced on Friday that the DHS’s Cyber Safety Review Board (CSRB) will conduct a review on malicious...
US Shuts Down Bulletproof Hosting Service LolekHosted, Charges Its Polish Operator – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire US authorities have announced the seizure of LolekHosted.net, the domain used by the bulletproof hosting service LolekHosted, as well as...
Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire American car maker Ford says that a vulnerability in the Wi-Fi driver of the SYNC 3 infotainment system on certain...
Threat Actors Abuse Cloudflare Tunnel for Persistent Access, Data Theft – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Threat actors have been observed abusing an open source tool named Cloudflared to maintain persistent access to compromised systems and...
Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Multiple vulnerabilities in the popular airline and hotel rewards platform points.com could have allowed attackers to access users’ personal information,...
Five Eyes Agencies Call Attention to Most Frequently Exploited Vulnerabilities – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Government agencies in Australia, Canada, New Zealand, the UK, and the US have published a list of the software vulnerabilities...
Jericho Security Raises $3 Million for Awareness Training Powered by Generative AI – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Jericho Security today announced that it has raised $3 million in a pre-seed funding round led by global investment firm...
Dozens of RCE Vulnerabilities Impact Milesight Industrial Router – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Dozens of vulnerabilities impacting the Milesight UR32L industrial router could be exploited to execute arbitrary code or commands, Cisco’s Talos...
Decommissioned Medical Infusion Pumps Expose Wi-Fi Configuration Data – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Most medical infusion pumps sold via secondary market sources still contain Wi-Fi configuration settings from the original organization that deployed...
Google Awards Over $60,000 for V8 Vulnerabilities Patched With Chrome 115 Update – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Google on Wednesday announced a Chrome 115 update that patches 17 vulnerabilities, including 11 flaws reported by external researchers. The...
New hVNC macOS Malware Advertised on Hacker Forum – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A new Hidden Virtual Network Computing (hVNC) malware targeting macOS devices is being advertised on a prominent cybercrime forum, Israeli...
Cyble Raises $24 Million for AI-Powered Threat Intelligence Platform – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Threat intelligence firm Cyble has raised $24 million in a Series B funding round that brings the total invested in...
Firefox 116 Patches High-Severity Vulnerabilities – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Mozilla on Tuesday announced the release of Firefox 116, Firefox ESR 115.1, and Firefox ESR 102.14, which include patches for...
Google AMP Abused in Phishing Attacks Aimed at Enterprise Users – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Threat actors have been observed abusing Google Accelerated Mobile Pages (AMP) in phishing campaigns, as a new tactic to evade...
Iran-Run ISP ‘Cloudzy’ Caught Supporting Nation-State APTs, Cybercrime Hacking Groups – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Researchers at cybersecurity startup Halcyon has unmasked an Iranian-run company providing command-and-control services to more than 20 hacking groups, including...
Nile Raises $175 Million for Secure NaaS Solutions – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Network-as-a-service (NaaS) solutions provider Nile today announced that it has raised $175 million in Series C funding, which brings the...
Bedding Giant Tempur Sealy Takes Systems Offline Following Cyberattack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Bedding products giant Tempur Sealy (NYSE: TPX) has shut down certain systems after falling victim to a cyberattack, the company...
Apple Lists APIs That Developers Can Only Use for Good Reason – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire In an effort to boost user privacy by preventing unwanted data collection, Apple is requiring application developers to declare the...
CISA Analyzes Malware Used in Barracuda ESG Attacks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The US Cybersecurity and Infrastructure Security Agency (CISA) has published analysis reports on three malware families deployed in an attack...
US, Australia Issue Warning Over Access Control Vulnerabilities in Web Applications – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire New guidance from the Australian Cyber Security Centre (ACSC), the US Cybersecurity and Infrastructure Security Agency (CISA), and National Security...
Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Threat intelligence company Greynoise says it has observed the first attempts to exploit a recent critical remote code execution (RCE)...
Zimbra Patches Exploited Zero-Day Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Zimbra this week released patches for a cross-site scripting (XSS) vulnerability in Collaboration Suite that has been exploited in malicious...
CoinsPaid Blames North Korean Hackers for $37 Million Cryptocurrency Heist – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Cryptocurrency payments firm CoinsPaid says North Korean hacking group Lazarus is likely responsible for the theft of approximatively $37 million...
European Threat Intelligence Firm QuoIntelligence Raises $5.5 Million in Seed Funding – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Threat intelligence services provider QuoIntelligence today announced that it has raised €5 million ($5.5 million) in seed funding. The investment...