Exploit Released For Android Local Elevation Flaw Impacting 7 Oems
A proof-of-concept (PoC) exploit for a local privilege elevation flaw impacting at least seven Android original equipment manufacturers (OEMs) is...
cybersecurity
Europcar Denies Data Breach Of 50 Million Users Says Data Is Fake
Car rental company Europcar says it has not suffered a data breach and that shared customer data is fake after...
Cisa Vendors Must Secure Soho Routers Against Volt Typhoon Attacks
CISA has urged manufacturers of small office/home office (SOHO) routers to ensure their devices' security against ongoing attacks attempting to hijack...
Ivanti Warns Of New Connect Secure Zero Day Exploited In Attacks
Today, Ivanti warned of two more vulnerabilities impacting Connect Secure, Policy Secure, and ZTA gateways, one of them a zero-day...
Hackers Push Usb Malware Payloads Via News Media Hosting Sites
A financially motivated threat actor using USB devices for initial infection has been found abusing legitimate online platforms, including GitHub,...
Johnson Controls Says Ransomware Attack Cost 27 Million Data Stolen
Johnson Controls International has confirmed that a September 2023 ransomware attack cost the company $27 million in expenses and led...
Pawn Storm’s Stealthy Net-NTLMv2 Assault Revealed
Pawn Storm, an advanced persistent threat (APT) actor also known as APT28, has been targeting high-value entities globally, employing a...
EU Launches First Cybersecurity Certification for Digital Products
The EU has adopted its first Cybersecurity Certification scheme as part of efforts to boost cybersecurity of IT products and...
Vastaamo Hacker Traced Via Untraceable Monero Transactions Police Says
Julius Aleksanteri Kivimäki, the suspect believed to be behind an attack against one of Finland's largest psychotherapy clinics, Vastaamo, was...
A Mishandled Github Token Exposed Mercedes Benz Source Code
A mishandled GitHub token gave unrestricted access to Mercedes-Benz's internal GitHub Enterprise Service, exposing source code to the public. Mercedes-Benz...
Citibank Sued Over Failure To Defend Customers Against Hacks Fraud
New York Attorney General Letitia James sued Citibank over its alleged failure to defend customers against hacks and scams and...
Police Disrupt Grandoreiro Banking Malware Operation Make Arrests
The Federal Police of Brazil and cybersecurity researchers have disrupted the Grandoreiro banking malware operation, which has been targeting Spanish-speaking...
Us Charges Two More Suspects With Draftking Account Hacks
The U.S. Department of Justice arrested and charged two more suspects for their involvement in the hacking of almost 68,000 DraftKings accounts in...
Microsoft Teams Phishing Pushes Darkgate Malware Via Group Chats
New phishing attacks abuse Microsoft Teams group chat requests to push malicious attachments that install DarkGate malware payloads on victims'...
Online Ransomware Decryptor Helps Recover Partially Encrypted Files
CyberArk has created an online version of 'White Phoenix,' an open-source ransomware decryptor targeting operations using intermittent encryption. The company announced...
New Linux Glibc Flaw Lets Attackers Get Root On Major Distros
Unprivileged attackers can get root access on multiple major Linux distributions in default configurations by exploiting a newly disclosed local...
How Smbs Can Lower Their Risk Of Cyberattacks And Data Breaches
The Akira ransomware group is targeting small to medium-sized businesses (SMBs) - 80% of its victims, since March 2023, have been SMBs....
Schneider Electric Confirms Data Accessed in Ransomware Attack
Energy firm Schneider Electric has revealed it has fallen victim to a ransomware attack, leading to data from its Sustainability...
Dhs Employees Jailed For Stealing Data Of 200k Us Govt Workers
Three former Department of Homeland Security (DHS) employees were sentenced to prison for stealing proprietary U.S. government software and databases...
Fbi Tech Support Scams Now Use Couriers To Collect Victims Money
Today, the FBI warned about courier services being used to collect money and valuables from victims of tech support and...
45k Jenkins Servers Exposed To Rce Attacks Using Public Exploits
Researchers found roughly 45,000 Jenkins instances exposed online that are vulnerable to CVE-2023-23897, a critical remote code execution (RCE) flaw...
Ransomware Payments Drop To Record Low As Victims Refuse To Pay
The number of ransomware victims paying ransom demands has dropped to a record low of 29% in the final quarter...
Keenan Warns 15 Million People Of Data Breach After Summer Cyberattack
Keenan & Associates is sending notices of a data breach to 1.5 million customers, warning that hackers accessed their personal...
Energy Giant Schneider Electric Hit By Cactus Ransomware Attack
Energy management and automation giant Schneider Electric suffered a Cactus ransomware attack leading to the theft of corporate data, according...
