Threat actor steals email with Zimbra zero-day
Researchers have discovered a threat actor attempting to exploit a cross-site scripting (XSS) zero-day vulnerability in the Zimbra email platform....
News
A nation-state actor hacked media and publishing giant News Corp
American media and publishing giant News Corp revealed it was victim of a cyber attack from an advanced persistent threat...
Retail giant Target open sources Merry Maker e-skimmer detection tool
Retail giant Target is going to open-source an internal tool, dubbed Merry Maker, designed to detect e-skimming attacks. Retail giant Target...
FBI warns of bogus job postings on recruitment sites
Before Christmas was a busy time down at the fake job factory, with all manner of dubious antics out to...
Investment scams are on the rise
Preying on one of the most basic human flaws, investment scams and other get-rich-quick schemes are making up an ever...
Russia-linked Gamaredon APT targeted a western government entity in Ukraine
The Russia-linked Gamaredon APT group attempted to compromise an unnamed Western government entity in Ukraine. Palo Alto Networks’ Unit 42...
Zimbra zero-day vulnerability actively exploited by an alleged Chinese threat actor
An alleged Chinese threat actor is actively attempting to exploit a zero-day vulnerability in the Zimbra open-source email platform. An...
Microsoft blocked tens of billions of brute-force and phishing attacks in 2021
Office 365 and Azure Active Directory (Azure AD) customers were the targets of billions of brute-force and phishing attacks last...
Exclusive interview with the Powerful Greek Army (PGA) hacker group
Six years ago the Powerful Greek Army (PGA) appeared in the threat landscape. After a long breach the hacker collective...
Codex Exposed: Helping Hackers in Training?
How useful is the Codex code generator as a potential training tool? If you like the site, please consider joining...
IaC: Azure Resource Manager Templates vs. Terraform
Dive into a hands-on comparison of Azure Resource Manager templates and Terraform. This article highlights the primary features of each...
A worrying Etsy listing reveals the stalking potential of Apple’s AirTags
In April of 2021, Apple introduced AirTags to the world, making the small tracking devices—similar to a Tile— available for...
Cisco fixes critical flaws in its Small Business Routers
Cisco released security patches to address multiple flaws in its Small Business RV160, RV260, RV340, and RV345 series routers. Cisco...
Antlion APT group used a custom backdoor that allowed them to fly under the radar for months
A China-linked APT group tracked as Antlion used a custom backdoor called xPack that was undetected for months. A China-linked...
Oil terminals in Europe’s biggest ports hit by a cyberattack
A cyber attack hit the oil terminals of some of the biggest European ports impacting their operations. Some of the...
Beware bogus OperaGX sponsorship offers
If you’re a YouTuber, watch out for bogus Opera missives winging their way to you. The Browser team has had...
$320 milllion stolen from Wormhole crypto-trading platform
By using an exploit in the software of crypto-trading platform Wormhole, threat actors have stolen an estimated $322 million in...
Wormhole cryptocurrency platform hacked, crooks stole $326 million, the second-biggest hack of a DeFi platform
Threat actors have stolen $325Â million in cryptocurrency leveraging a bug in the Wormhole communication bridge. Wormhole, one of the most...
Trend Micro fixed 2 flaws in Hybrid Cloud Security products
Trend Micro recently addressed two high-severity flaws affecting some of its hybrid cloud security products. Trend Micro released security updates...
The Samba Vulnerability: What is CVE-2021-44142 and How to Fix It
Information on the latest Samba vulnerability and how to protect systems against the threats that can exploit it. If you...
How to Use Zero Trust Security for the Hybrid Cloud
Securing the hybrid cloud can be complex. Explore how CISOs can use the zero trust security approach for more proactive...
Researcher found an Information Disclosure in the Brave browser
Security researcher discovered an Information Disclosure vulnerability in Brave browser and reported it through the HackerOne platform. Security researcher Kirtikumar...
Sugar Ransomware, a new RaaS in the threat landscape
Cyber security team at retail giant Walmart dissected a new ransomware family dubbed Sugar, which implements a ransomware-as-a-service model. The...
Cyberattack on fuel supplier causes supply chain disruption
A cyberattack has disrupted the activities in Germany of fuel supplier Oiltanking Deutschland GmbH & Co. KG. The supplier is,...
