New Linux Glibc Flaw Lets Attackers Get Root On Major Distros
Unprivileged attackers can get root access on multiple major Linux distributions in default configurations by exploiting a newly disclosed local...
News
How Smbs Can Lower Their Risk Of Cyberattacks And Data Breaches
The Akira ransomware group is targeting small to medium-sized businesses (SMBs) - 80% of its victims, since March 2023, have been SMBs....
Jenkins Multiple Vulnerabilities
Multiple vulnerabilities were identified in Jenkins. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution,...
UK House of Lords Calls For Legislation on Facial Recognition Tech
The UK parliament’s upper chamber has said it is “deeply concerned” about unaccountable police use of live facial recognition (LFR)...
Ransomware Incidents Hit Record High, But Law Enforcement Takedowns Slow Growth
Ransomware incidents surged by 68% in 2023 to reach a record high, according to new data from Corvus Insurance. However,...
FBI: Scammers Are Sending Couriers to Collect Cash From Victims
The FBI has claimed $55m were lost from May to December 2023 to scammers posing as representatives of the government,...
Schneider Electric Confirms Data Accessed in Ransomware Attack
Energy firm Schneider Electric has revealed it has fallen victim to a ransomware attack, leading to data from its Sustainability...
Alpha Ransomware Group Launches Data Leak Site on the Dark Web
A new ransomware group called Alpha has recently emerged with the launch of its Dedicated/Data Leak Site (DLS) on the...
Orange España Breach: Dark Web Flooded With Operator Credentials
Security researchers have uncovered the presence of hundreds of network operators’ credentials circulating on the dark web in the aftermath of...
Rust Payloads Exploiting Ivanti Zero-Days Linked to Sophisticated Sliver Toolkit
Payloads recently found on compromised Ivanti Connect Secure appliances could be from the same, sophisticated threat actor, according to incident...
Active Exploitation of Multiple Vulnerabilities in Jenkins Products
Jenkins has released security updates addressing multiple vulnerabilities, including a critical (CVE-2024-23897) vulnerability and a high-severity (CVE-2024-23898) vulnerability in their...
China-Linked Hackers Target Myanmar’s Top Ministries with Backdoor Blitz
The China-based threat actor known as Mustang Panda is suspected to have targeted Myanmar's Ministry of Defence and Foreign Affairs...
Brazilian Feds Dismantle Grandoreiro Banking Trojan, Arresting Top Operatives
A Brazilian law enforcement operation has led to the arrest of several Brazilian operators in charge of the Grandoreiro malware....
URGENT: Upgrade GitLab – Critical Workspace Creation Flaw Allows File Overwrite
GitLab once again released fixes to address a critical security flaw in its Community Edition (CE) and Enterprise Edition (EE)...
Active Exploitation of Multiple Vulnerabilities in Jenkins Products
Jenkins has released security updates addressing multiple vulnerabilities, including a critical (CVE-2024-23897) vulnerability and a high-severity (CVE-2024-23898) vulnerability in their...
Italian Data Protection Watchdog Accuses ChatGPT of Privacy Violations
Italy's data protection authority (DPA) has notified ChatGPT-maker OpenAI of supposedly violating privacy laws in the region. "The available evidence...
Top Security Posture Vulnerabilities Revealed
Each New Year introduces a new set of challenges and opportunities for strengthening our cybersecurity posture. It's the nature of...
Jenkins Multiple Vulnerabilities
Multiple vulnerabilities were identified in Jenkins. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution,...
Juniper Networks Releases Urgent Junos OS Updates for High-Severity Flaws
Juniper Networks has released out-of-band updates to address high-severity flaws in SRX Series and EX Series that could be exploited...
New ZLoader Malware Variant Surfaces with 64-bit Windows Compatibility
Threat hunters have identified a new campaign that delivers the ZLoader malware, resurfacing nearly two years after the botnet's infrastructure...
Dhs Employees Jailed For Stealing Data Of 200k Us Govt Workers
Three former Department of Homeland Security (DHS) employees were sentenced to prison for stealing proprietary U.S. government software and databases...
Keenan Warns 15 Million People Of Data Breach After Summer Cyberattack
Keenan & Associates is sending notices of a data breach to 1.5 million customers, warning that hackers accessed their personal...
Energy Giant Schneider Electric Hit By Cactus Ransomware Attack
Energy management and automation giant Schneider Electric suffered a Cactus ransomware attack leading to the theft of corporate data, according...
Fbi Tech Support Scams Now Use Couriers To Collect Victims Money
Today, the FBI warned about courier services being used to collect money and valuables from victims of tech support and...
