VMware ESXi Flaw Exploited by Ransomware Groups for Admin Access
A recently patched security flaw impacting VMware ESXi hypervisors has been actively exploited by "several" ransomware groups to gain elevated...
US Crypto Exchange Gemini Reveals Breach
A US-headquartered cryptocurrency exchange has revealed a supply chain breach which led to the compromise of personal and banking information...
Less Than Half of European Firms Have AI Controls in Place
European businesses have been urged to carefully assess what privacy, security and acceptable usage controls they need to place on...
Walmart Discovers New PowerShell Backdoor Linked to Zloader Malware
An unknown PowerShell backdoor has been discovered alongside a new variant of the Zloader/SilentNight malware, Walmart’s Cyber Intelligence Team has...
Mandrake Spyware Infects 32,000 Devices Via Google Play Apps
Security researchers have shed light on a new iteration of Mandrake, a sophisticated Android cyber-espionage malware tool. Initially analyzed by...
Hotjar, Business Insider Vulnerabilities Expose OAuth Data Risks
Security researchers have unveiled critical vulnerabilities within web analytics provider Hotjar and global news outlet Business Insider. The findings, from Salt...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Cisco Releases Security Updates for Multiple Products
Cisco Releases Security Updates for Multiple Products Cisco released security updates to address vulnerabilities in Cisco software. A cyber threat...
CISA: Oracle Releases Critical Patch Update Advisory for July 2024
Oracle Releases Critical Patch Update Advisory for July 2024 Oracle released its quarterly Critical Patch Update Advisory for July 2024...
CISA: Widespread IT Outage Due to CrowdStrike Update
Widespread IT Outage Due to CrowdStrike Update Note: CISA will update this Alert with more information as it becomes available....
CISA: Ivanti Releases Security Updates for Endpoint Manager
Ivanti Releases Security Updates for Endpoint Manager Ivanti released security updates to address vulnerabilities in Ivanti Endpoint Manager (EPM) and...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on July 25, 2024. These...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: FBI, CISA, and Partners Release Advisory Highlighting North Korean Cyber Espionage Activity
FBI, CISA, and Partners Release Advisory Highlighting North Korean Cyber Espionage Activity Today, CISA—in partnership with the Federal Bureau of...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on July 23, 2024. These...
CISA: ISC Releases Security Advisories for BIND 9
ISC Releases Security Advisories for BIND 9 The Internet Systems Consortium (ISC) released security advisories to address vulnerabilities affecting multiple...
US-CERT Vulnerability Summary for the Week of July 22, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Critical Flaw in Acronis Cyber Infrastructure Exploited in the Wild
Cybersecurity company Acronis is warning that a now-patched critical security flaw impacting its Cyber Infrastructure (ACI) product has been exploited...
HackerOne Bug Bounty Disclosure: exposure-of-shopify-employee-summit-page-allows-anonymous-user-to-place-orders-for-free-books-g-lden
Company Name: Shopify Company HackerOne URL: https://hackerone.com/shopify Submitted By:g0lden1Link to Submitters Profile:https://hackerone.com/g0lden1 Report Title:Exposure of shopify employee summit page allows...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails
An unknown threat actor has been linked to a massive scam campaign that exploited an email routing misconfiguration in email...
How Searchable Encryption Changes the Data Security Game
Searchable Encryption has long been a mystery. An oxymoron. An unattainable dream of cybersecurity professionals everywhere. Organizations know they must...
‘Stargazer Goblin’ Creates 3,000 Fake GitHub Accounts for Malware Spread
A threat actor known as Stargazer Goblin has set up a network of inauthentic GitHub accounts to fuel a Distribution-as-a-Service...
BianLian Ransomware Victim: Insula Group
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
