CVE-2021-3064: Easily exploitable RCE flaw in Palo Alto Networks in GlobalProtect VPN
Palo Alto Networks warns of an easy exploitable Remote Code Execution vulnerability in its GlobalProtect VPN product. Palo Alto Networks...
News
Sophisticated Android spyware PhoneSpy infected thousands of Korean phones
South Korean users have been targeted with a new sophisticated Android spyware, tracked as PhoneSpy, as part of an ongoing...
Streaming wars continue — what about cyberthreats?
Last year became a banner year for the online entertainment industry. Driven by the pandemic lockdown restrictions and imposed work-from-home...
VMware discloses a severe flaw in vCenter Server that has yet to fix
VMware announced it is working on patches for an important severity privilege escalation vulnerability affecting vCenter Server. VMware announced it’s...
A flaw in WP Reset PRO WordPress plugin allows wiping the installation DB
A critical vulnerability in the WP Reset PRO WordPress plugin can allow an authenticated user to wipe the entire database...
Citrix addresses a critical flaw in ADC, Gateway
Citrix addressed two vulnerabilities affecting Citrix ADC, Gateway, and SD-WAN, one of them is a critical issue leading to DoS....
Playstation 5 hacked—twice!
Over the weekend, hackers revealed that the Playstation 5 (PS5), Sony’s latest darling, has been broken into—not just once but twice....
Taiwan Government faces 5 Million hacking attempts daily
Taiwan ‘s government agencies face around five million cyberattacks and probes every day, most of them from China. Around five...
Patch now! Microsoft plugs actively exploited zero-days and other updates
On what might seem a relatively calm Patch Tuesday with 55 vulnerabilities being patched, the fact that six of them...
Experts found 14 new flaws in BusyBox, millions of devices at risk
Researchers have identified a total of 14 new vulnerabilities in BusyBox that expose million of Unix-based devices to cyberattacks. Researchers...
Are cybercriminals turning away from the US and targeting Europe instead?
Significant cyberattacks against critical targets in Europe have doubled in the past year, according to EU figures obtained by CNN....
TeamTNT group targets poorly configured Docker servers exposing REST APIs
TeamTNT hackers are targeting poorly configured Docker servers as part of an ongoing campaign that started in October. Trend Micro...
Robinhood data breach exposes 7 Million users’ information
Robinhood disclosed a security breach, an unidentified threat actor gained unauthorized access to approximately 7 million customer records. Robinhood Markets,...
Microsoft Patch Tuesday security updates for November 2021 fix 2 Zero-Days actively exploited
Microsoft Patch Tuesday security updates for November 2021 address 55 vulnerabilities in multiple products and warn of two actively exploited...
Smart TV adverts put a wrinkle in your programming
Smart TVs are back in the news due to the potential pitfalls of embedded advertising. It may come as a...
Clop gang exploiting CVE-2021-35211 RCE in SolarWinds Serv-U in recent attack
The Clop ransomware gang is exploiting CVE-2021-35211 vulnerability in SolarWinds Serv-U to compromise corporate networks. Threat actors always look for...
How to remove adware on an Android phone
It shouldn’t be surprising that Android devices are the targets of threats like adware and other Potentially Unwanted Programs (PUPs)....
Internationa law enforcement arrested REvil ransomware affiliates in Romania and Kuwait
Romanian police arrested two alleged Sodinokibi/REvil ransomware affiliates accused to have orchestrated attacks against thousands of victims. Romanian law enforcement...
US DoS offers a reward of up to $10M for leaders of REvil ransomware gang
The U.S. government offers up to $10 million for identifying or locating leaders in the REvil/Sodinokibi ransomware operation The Department...
Ukrainian REvil affiliate charged with Ransomware Attack on Kaseya
The US DoJ has charged a REvil ransomware affiliate that is suspected to have orchestrated the attack on Kaseya MSP...
DDoS attacks in Q3 2021
News overview Q3 2021 brought two new DDoS attack vectors, potentially posing a serious threat, including for major web resources....
Multiple video games break after domain name snafu
We’ve seen quite a few complaints from gamers this past weekend, unable to load up and play games on the...
US-CERT Bulletin (SB21-312):Vulnerability Summary for the Week of November 1, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Ransomware attack disrupted store operations in the Netherlands and Germany
Electronics retail giant MediaMarkt was hit by a ransomware attack that disrupted store operations in the Netherlands and Germany. Electronics retail...
