Lockbit Ransomware Affiliate Gets Four Years In Jail To Pay 860k
Russian-Canadian cybercriminal Mikhail Vasiliev has been sentenced to four years in prison by an Ontario court for his involvement in...
Month: March 2024
Fortinet Warns Of Critical Rce Bug In Endpoint Management Software
Fortinet patched a critical vulnerability in its FortiClient Enterprise Management Server (EMS) software that can allow attackers to gain remote...
Hackers Exploit Windows Smartscreen Flaw To Drop Darkgate Malware
A new wave of attacks by the DarkGate malware operation exploits a now-fixed Windows Defender SmartScreen vulnerability to bypass security...
Pen Test Vendor Rotation Do You Need To Change Annually
You might have heard about the practice of pen test vendor rotation, or even tried it yourself. This is where...
Pixpirate Android Malware Uses New Tactic To Hide On Phones
The latest version of the PixPirate banking trojan for Android employs a new method to hide on phones while remaining...
Us Govt Probes If Ransomware Gang Stole Change Healthcare Data
The U.S. Department of Health and Human Services is investigating whether protected health information was stolen in a ransomware attack...
Nearly 13 Million Secrets Spilled Via Public GitHub Repositories
Developers accidentally leaked 12.8 million secrets on public GitHub repositories in 2023, a 28% increase on the previous year, according...
New Research Exposes Security Risks in ChatGPT Plugins
Security researchers have uncovered critical security flaws within ChatGPT plugins. By exploiting these flaws, attackers could seize control of an...
Cloud Account Attacks Surged 16-Fold in 2023
Cloud account threats increased 16-fold in 2023, with attackers adopting new techniques in these environments, according to Red Canary’s 2024...
Single RCE Bug Features Among 60 CVEs in March Patch Tuesday
Microsoft fixed 60 vulnerabilities in this month’s Patch Tuesday security update round, including just two critical bugs.These both affect Windows...
Investment Scams Grow, 13,000 Domains Detected in January 2024
Internet security experts have detected and blocked nearly 13,000 fake investment platform domains across more than 7000 IPs in January...
ClickASnap – 3,262,980 breached accounts
HIBP In September 2022, the online photo sharing platform ClickASnap suffered a data breach. The incident exposed almost 3.3M personal...
CISA: Apple Released Security Updates for Multiple Products
Apple Released Security Updates for Multiple Products Apple released security updates to address vulnerabilities in Safari, macOS, watchOS, tvOS, and visionOS....
CISA: CISA Adds One Known Exploited JetBrains Vulnerability, CVE-2024-27198, to Catalog
CISA Adds One Known Exploited JetBrains Vulnerability, CVE-2024-27198, to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on March 7, 2024. These...
CISA: Apple Releases Security Updates for iOS and iPadOS
Apple Releases Security Updates for iOS and iPadOS Apple released security updates to address vulnerabilities in iOS and iPadOS. A...
CISA: Cisco Releases Security Updates for Secure Client
Cisco Releases Security Updates for Secure Client Cisco released security updates to address vulnerabilities in Cisco Secure Client and Secure...
CISA: Microsoft Releases Security Updates for Multiple Products
Microsoft Releases Security Updates for Multiple Products Microsoft has released security updates to address vulnerabilities in multiple products. A cyber...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on March 12, 2024. These...
CISA: CISA Publishes SCuBA Hybrid Identity Solutions Guidance
CISA Publishes SCuBA Hybrid Identity Solutions Guidance CISA has published Secure Cloud Business Applications (SCuBA) Hybrid Identity Solutions Guidance (HISG)...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe released security updates to address multiple vulnerabilities in Adobe software. A cyber...
CISA: Fortinet Releases Security Updates for Multiple Products
Fortinet Releases Security Updates for Multiple Products Fortinet released security updates to address vulnerabilities in multiple Fortinet products. A cyber...
HackerOne Bug Bounty Disclosure: insecure-s-bucket-exposing-git-directory-in-mozilla-foundation-infographics-project-psycho
Company Name: Mozilla Critical Services Company HackerOne URL: https://hackerone.com/mozilla_critical_services Submitted By:psycho_012Link to Submitters Profile:https://hackerone.com/psycho_012 Report Title:Insecure S3 Bucket Exposing Git...
HackerOne Bug Bounty Disclosure: unauthorized-access-to-offline-publication-cover-pages-via-source-document-id-giwadaoud
Company Name: Publitas Company HackerOne URL: https://hackerone.com/publitas Submitted By:giwadaoudLink to Submitters Profile:https://hackerone.com/giwadaoud Report Title:Unauthorized Access to Offline Publication Cover Pages...
