Hotjar, Business Insider Vulnerabilities Expose OAuth Data Risks
Security researchers have unveiled critical vulnerabilities within web analytics provider Hotjar and global news outlet Business Insider. The findings, from Salt...
Month: July 2024
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Cisco Releases Security Updates for Multiple Products
Cisco Releases Security Updates for Multiple Products Cisco released security updates to address vulnerabilities in Cisco software. A cyber threat...
CISA: Oracle Releases Critical Patch Update Advisory for July 2024
Oracle Releases Critical Patch Update Advisory for July 2024 Oracle released its quarterly Critical Patch Update Advisory for July 2024...
CISA: Widespread IT Outage Due to CrowdStrike Update
Widespread IT Outage Due to CrowdStrike Update Note: CISA will update this Alert with more information as it becomes available....
CISA: Ivanti Releases Security Updates for Endpoint Manager
Ivanti Releases Security Updates for Endpoint Manager Ivanti released security updates to address vulnerabilities in Ivanti Endpoint Manager (EPM) and...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on July 25, 2024. These...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: FBI, CISA, and Partners Release Advisory Highlighting North Korean Cyber Espionage Activity
FBI, CISA, and Partners Release Advisory Highlighting North Korean Cyber Espionage Activity Today, CISA—in partnership with the Federal Bureau of...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on July 23, 2024. These...
CISA: ISC Releases Security Advisories for BIND 9
ISC Releases Security Advisories for BIND 9 The Internet Systems Consortium (ISC) released security advisories to address vulnerabilities affecting multiple...
US-CERT Vulnerability Summary for the Week of July 22, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Critical Flaw in Acronis Cyber Infrastructure Exploited in the Wild
Cybersecurity company Acronis is warning that a now-patched critical security flaw impacting its Cyber Infrastructure (ACI) product has been exploited...
HackerOne Bug Bounty Disclosure: exposure-of-shopify-employee-summit-page-allows-anonymous-user-to-place-orders-for-free-books-g-lden
Company Name: Shopify Company HackerOne URL: https://hackerone.com/shopify Submitted By:g0lden1Link to Submitters Profile:https://hackerone.com/g0lden1 Report Title:Exposure of shopify employee summit page allows...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails
An unknown threat actor has been linked to a massive scam campaign that exploited an email routing misconfiguration in email...
How Searchable Encryption Changes the Data Security Game
Searchable Encryption has long been a mystery. An oxymoron. An unattainable dream of cybersecurity professionals everywhere. Organizations know they must...
‘Stargazer Goblin’ Creates 3,000 Fake GitHub Accounts for Malware Spread
A threat actor known as Stargazer Goblin has set up a network of inauthentic GitHub accounts to fuel a Distribution-as-a-Service...
BianLian Ransomware Victim: Insula Group
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Gh0st RAT Trojan Targets Chinese Windows Users via Fake Chrome Site
The remote access trojan known as Gh0st RAT has been observed being delivered by an "evasive dropper" called Gh0stGambit as...
Abyss Ransomware Victim: zoppo[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Shielding Your Digital Life: A Deep Dive into Privacy and Data Protection
In an age where our digital activities are intricately interwoven with our daily lives, the concepts of privacy and data...
How the CrowdStrike Outage Carved Out New Opportunities for Hackers
Following a damaging U.S. government report criticizing Microsoft's cybersecurity practices, which had allowed Chinese hackers access to the email accounts...
CISA: Ivanti Releases Security Updates for Endpoint Manager
Ivanti Releases Security Updates for Endpoint Manager Ivanti released security updates to address vulnerabilities in Ivanti Endpoint Manager (EPM) and...
