Ukraine takes down massive bot farm, seizes 150,000 SIM cards
The Cyber Police Department of the National Police of Ukraine dismantled another massive bot farm linked to more than 100...
News
OpenAI credentials stolen by the thousands for sale on the dark web
Threat actors are showing an increased interest in generative artificial intelligence tools, with hundreds of thousands of OpenAI credentials for...
Adobe emergency patch fixes new ColdFusion zero-day used in attacks
Adobe released an emergency ColdFusion security update that fixes critical vulnerabilities, including a fix for a new zero-day exploited in...
Microsoft: Hackers turn Exchange servers into malware control centers
Microsoft and the Ukraine CERT warn of new attacks by the Russian state-sponsored Turla hacking group, targeting the defense industry...
Estée Lauder beauty giant breached by two ransomware gangs
Two ransomware actors, ALPHV/BlackCat and Clop, have listed beauty company Estée Lauder on their data leak sites as a victim...
Adobe ColdFusion Multiple Vulnerabilities
Multiple vulnerabilities were identified in Adobe ColdFusion. A remote attacker could exploit some of these vulnerabilities to trigger remote code...
Adobe ColdFusion Multiple Vulnerabilities
Multiple vulnerabilities were identified in Adobe ColdFusion. A remote attacker could exploit some of these vulnerabilities to trigger remote code...
Norwegian Giant Tomra Suffers “Extensive” Attack
Norwegian recycling and mining multinational Tomra has revealed that an “extensive” cyber-attack has directly affected some of its “data systems.”The...
Industry Experts Urge CISA to Update Secure by Design Guidance
A group of industry experts have published a letter to the US Cybersecurity and Infrastructure Security Agency (CISA) in response...
Scam Job Offers Target Uni Students
University students have been warned to be on their guard after researchers discovered a new scam campaign based around fake...
NCA: Nation States Using Cybercrime Groups as Proxies
The new chief of the UK’s National Crime Agency (NCA) has warned that hostile states are increasingly teaming up with...
Biden-Harris Administration Unveils Smart Device Cyber Program
In a move to bolster cybersecurity protections for American consumers, the Biden-Harris Administration announced on July 18, 2023 it was...
Chinese APT41 Linked to WyrmSpy and DragonEgg Surveillanceware
The Chinese espionage group APT41 (AKA Double Dragon, BARIUM and Winnti) has been linked to the sophisticated Android surveillanceware known...
How Cyber Threat Intelligence Practitioners Should Leverage Automation and AI
Cyber threat intelligence (CTI) practitioners have to deal with an increasing volume of cyber events and incidents, making it hard...
Critical API Security Gaps Found in Financial Services
An industry-focused report on application programming interface (API) security has revealed a critical state of affairs in the financial services...
VMWare Aria Operations for Networks Multiple Vulnerabilities
Multiple vulnerabilities were identified in VMWare Aria Operations for Networks. A remote attacker could exploit some of these vulnerabilities to...
Apple Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code...
VMWare Aria Operations for Networks Multiple Vulnerabilities
Multiple vulnerabilities were identified in VMWare Aria Operations for Networks. A remote attacker could exploit some of these vulnerabilities to...
Samsung Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Samsung Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of...
Microsoft Monthly Security Update (July 2023)
Microsoft has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesWindows High RiskElevation of Privilege Denial of Service Information Disclosure...
Android Multiple Vulnerabilities
Multiple vulnerabilities were identified in Android. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...
Adobe ColdFusion Remote Code Execution Vulnerability
A vulnerability was identified in Adobe ColdFusion. A remote attacker could exploit this vulnerability to trigger remote code execution on...
Citrix Products Multiple Vulnerabilities
Multiple vulnerabilities were identified in Citrix Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of...
Ghostscript Remote Code Execution Vulnerability
A vulnerability was identified in Ghostscript. A remote attacker could exploit this vulnerability to trigger remote code execution on the...
