Source: www.securityweek.com – Author: Ionut Arghire Internet-connected Peloton fitness equipment is plagued with numerous security issues that could allow attackers to obtain device information or deploy...
Author:
CardioComm Takes Systems Offline Following Cyberattack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Canadian heart monitoring and medical electrocardiogram solutions provider CardioComm this week announced it has taken systems offline following a cyberattack....
Cyclops Emerges From Stealth With Security Search Platform Powered by Generative AI – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Israeli cybersecurity startup Cyclops today announced that it has emerged from stealth mode with $6.4 million in seed funding. The...
Microsoft Message Queuing Vulnerabilities Allow Remote Code Execution, DoS Attacks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Cybersecurity firm Fortinet has published details on three critical- and high-severity vulnerabilities patched recently in the Microsoft Message Queuing (MSMQ)...
Dozens of Organizations Targeted by Akira Ransomware – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The Akira ransomware gang has compromised at least 63 organizations since March 2023, mostly focusing on small- to medium-sized businesses...
Code Execution Vulnerability Impacts 900k MikroTik Devices – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire More than 900,000 MikroTik devices are impacted by a RouterOS vulnerability leading to arbitrary code execution, vulnerability intelligence provider VulnCheck...
OneTrust Raises $150 Million at $4.5 Billion Valuation – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Data privacy and governance provider OneTrust today announced that it has raised $150 million in new funding, bringing the total...
Los Angeles SIM Swapper Pleads Guilty to Cybercrime Charges – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A Los Angeles man has pleaded guilty to using SIM swapping to perpetrate multiple cybercrime schemes targeting hundreds of victims....
Over 20,000 Citrix Appliances Vulnerable to New Exploit – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A new exploit technique targeting a recent Citrix Application Delivery Controller (ADC) and Gateway vulnerability can be used against thousands...
Atlassian Patches Remote Code Execution Vulnerabilities in Confluence, Bamboo – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Atlassian has released patches for two remote code execution (RCE) vulnerabilities in Confluence Data Center and Server and another in...
OpenMeetings Flaws Allow Hackers to Hijack Instances, Execute Code on Servers – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Three vulnerabilities in Apache OpenMeetings potentially expose organizations to remote code execution attacks, cybersecurity firm Sonar warns. A web conferencing...
GitHub Warns of North Korean Social Engineering Attacks Targeting Tech Firm Employees – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A North Korean threat actor has been observed targeting employees at technology firms in a new low-volume social engineering campaign,...
Tampa General Hospital Says Patient Information Stolen in Ransomware Attack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Tampa General Hospital this week started informing patients that their personal information was compromised in a ransomware attack that has...
JumpCloud Cyberattack Linked to North Korean Hackers – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The cyberattack that directory, identity, and access management company JumpCloud fell victim to in late June can be attributed to...
Multiple DDoS Botnets Exploiting Recent Zyxel Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Multiple distributed denial-of-service (DDoS) botnets are targeting a vulnerability in Zyxel firewalls for which patches have been available since April,...
P2PInfect: New Peer-to-Peer Worm Targeting Redis Servers – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A newly discovered peer-to-peer (P2P) worm is targeting Redis servers that are vulnerable to a year-old Lua sandbox escape bug,...
New Ransomware With RAT Capabilities Impersonating Sophos – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A Rust-based file-encrypting ransomware was found this week to be impersonating the cybersecurity firm Sophos as part of its operation....
Recycling Giant Tomra Takes Systems Offline Following Cyberattack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Norwegian recycling giant Tomra has taken some of its systems offline after falling victim to what it describes as “an...
Two Jira Plugin Vulnerabilities in Attacker Crosshairs – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Attackers are apparently trying to exploit two path traversal vulnerabilities in the ‘Stagil navigation for Jira – Menus & Themes’...
Oracle Releases 508 New Security Patches With July 2023 CPU – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Oracle on Tuesday announced the release of 508 new security patches as part of the July 2023 CPU, including more...
Chrome 115 Patches 20 Vulnerabilities – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Google on Tuesday announced the release of Chrome 115 to the stable channel, with patches for 20 vulnerabilities, including 11...
NSA, CISA Issue Guidance on 5G Network Slicing Security – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) on Monday published guidance on hardening 5G...
Black Hat Hacker Exposes Real Identity After Infecting Own Computer With Malware – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A threat actor infected their own computer with an information stealer, which has allowed Israeli threat intelligence company Hudson Rock...
WordPress Sites Hacked via Critical Vulnerability in WooCommerce Payments Plugin – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Threat actors have started hacking WordPress websites by exploiting a critical vulnerability in the WooCommerce Payments plugin. A fully integrated...
White House Unveils Cybersecurity Labeling Program for Smart Devices – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The Biden-Harris administration today announced a new cyber initiative to label smart devices that are considered safe to use and...
Hardcoded Accounts Allow Full Takeover of Technicolor Routers – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Multiple hardcoded credentials found on the Technicolor TG670 DSL gateway router allow attackers to completely take over devices, the CERT...
Citrix Patches Critical Vulnerability in Secure Access Client for Ubuntu – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Citrix on Tuesday announced the release of patches for a critical-severity vulnerability in the Secure Access client for Ubuntu that...
Fortinet Patches Critical FortiOS Vulnerability Leading to Remote Code Execution – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Fortinet on Tuesday announced security updates that address a critical-severity vulnerability in FortiOS and FortiProxy that could be exploited for...
SAP Patches Critical Vulnerability in ECC and S/4HANA Products – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire German enterprise software maker SAP on Tuesday announced the release of 16 new security notes as part of its July...
Former Security Engineer Arrested for $9 Million Crypto Exchange Hack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The US today announced the arrest of Shakeeb Ahmed on charges related to the defrauding of a decentralized cryptocurrency exchange...