Solarwinds Orion Platform updates fix two remote code execution issues
Solarwinds released security updates that address multiple vulnerabilities, including two flaws that be exploited by attackers for remote code execution....
News
FBI published a flash alert on Mamba Ransomware attacks
The Federal Bureau of Investigation (FBI) issued an alert to warn that the Mamba ransomware is abusing the DiskCryptor open...
OpenSSL Project released 1.1.1k version to fix two High-severity flaws
The OpenSSL Project addresses two high-severity vulnerabilities, including one related to verifying a certificate chain and one that can trigger...
62,000 Microsoft Exchange Servers potentially left unpatched, weeks after software bugs were first uncovered
The CyberNews investigation team found 62,174 potentially vulnerable unpatched Microsoft Exchange Servers. A number of entities in the US and...
Facebook took action against China-linked APT targeting Uyghur activists
Facebook has closed accounts used by a China-linked APT to distribute malware to spy on Uyghurs activists, journalists, and dissidents living...
Perkiler malware turns to SMB brute force to spread
Researchers at Guardicore have identified a new infection vector being used by the Perkiler malware where internet-facing Windows machines are...
Slack hurries to fix direct message flaw that allowed harassment
The enormous work messaging platform Slack quickly reversed course yesterday, promising to revise a brand-new direct message feature that could...
Anonymous Hackers reportedly exposed the anti-Russian activities of the British Council
The Anonymous hacker group published an analysis of documents belonging to various British government agencies, including the Foreign Office, according...
Personal Details of 6.5 Million Israeli Voters Leaked Online
A database with the names and ID numbers of all the eligible voters in Israel was leaked online by anonymous...
New Worm Capabilities Targets Windows Machines
A malware that has verifiably targeted exposed Windows machines through phishing and exploit kits have been retooled to add new...
Data From These Two Universities Stolen and Published Online by Clop Ransomware Group
The Clop ransomware group has officially published online the grades and social security numbers for students at the University of...
Threat landscape for industrial automation systems. Statistics for H2 2020
Figures Indicator H1 2020 H2 2020 2020 Global percentage of attacked ICS computers 32.6% 33.42% 38.55% Percentage of attacked ICS...
Attack vs. Data: What You Need to Know About Threat Hunting
Mitigate threats by going on the offensiveWhile the definition of threat hunting may be straightforward—proactively hunting for threats—the reality of...
The surge of fake COVID-19 test results, vaccines and vaccination certificates on the Dark Web
Threat actors are offering fake COVID-19 test results and vaccination certificates in blackmarkets and hacking forums on the Dark Web....
30 million Americans affected by the Astoria Company data breach
Researchers discovered the availability in the DarK Web of 30M of records of Americans affected by the Astoria Company data...
Cisco Jabber for Windows, macOS, Android and iOS is affected by a critical issue
Cisco has addressed a critical arbitrary program execution flaw in its Cisco Jabber client software for Windows, macOS, Android, and...
Software renewal scammers unmasked
We’ve been tracking a fraudulent scheme involving renewal notifications for several months now. It came to our attention because the...
GitHub Awards $25,000 Bug Bounty to the Google Employee
GitHub awarded $25,000 to the security researcher, Teddy Katz for discovering a bug and patching it. On March 17, bug...
Russia’s Central Bank has warned of hackers targeting banks’ mobile apps
The Central Bank of Russia has warned of the emergence of a group of hackers investigating vulnerabilities in banks' mobile...
Email Scam Under the Name of IRS Try to gain EFIN of Tax Preparers
A lot of people are familiar with the US Internal Revenue Service (IRS) scam letters about the tax season that...
Rapid7 Recognized as a Strong Performer in the Inaugural Forrester Wave™ for MDR, Q1 2021
Independent research firm cites Rapid7 MDR’s “security professionals with extensive incident response and threat hunting experience” delivering a “white-glove, behavioral...
Billions of FBS Records Exposed in Online Trading Broker Data Leak
Ata Hakcil led the team of white hat hackers from WizCase in identifying a major data leak on online trading broker FBS’...
Black Kingdom ransomware is targeting Microsoft Exchange servers
Security experts reported that a second ransomware gang, named Black Kingdom, is targeting Microsoft Exchange servers. After the public disclosure...
A day before elections, hackers leaked details of millions of Israeli voters
Hackers have exposed personal and voter registration details of over 6.5 million Israeli voters, less than 24 hours before the...
