Blog Series
Cybersecurity News
- No categories
Fortra’s GoAnywhere MFT Utility vulnerable...
Fortra has discovered a zero-day remote code execution (RCE) vulnerability in its GoAnywhere MFT utility, which has been actively abused by ransomware perpetrators to steal sensitive data. The CVE-2023-0669 (CVSS...
ChatGPT-related domain squatting grows by...
According to Palo Alto Networks Unit 42, there has been a monthly surge of 910% in newly registered and squatted domains associated to ChatGPT between November 2022 and early April...
QBot malware spreads through new...
Proxylife and the Cryptolaemus group have detected a new phishing effort that distributes QBot malware via PDFs and Windows Script Files (WSF). QBot, also known as QakBot, is a virus...
More than half of second-hand...
A study conducted by ESET reveals that 56% of second-hand corporate network devices still contain sensitive company data. The security vendor purchased 16 recycled devices routers and found that nine...
Cisco, VMware addresses critical security...
Cisco and VMware have released security patches to address serious security flaws which malicious actors might exploit to execute arbitrary code on vulnerable computers. A command injection hole in Cisco...
CISA uncovers two actively exploited...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has found two actively exploited vulnerabilities in its Known Exploited Vulnerabilities (KEV) list. The first is an Android Framework Privilege Escalation Vulnerability,...
Trellix reports on emerging cybercriminal...
Trellix, a cybersecurity firm, has provided detailed information on the modus operandi of a new cybercriminal gang called the “Read The Manual” Locker. The group offers ransomware-as-a-service (RaaS) to a...
Spectre-related flaw in Linux Kernel...
Google’s product security response team has discovered a Spectre-related vulnerability in Linux kernel version 6.2, extending the threat posed by the bug that has plagued hardware and software vendors since...
Phishing campaign targets tax...
As the U.S. tax season comes to a close, Microsoft warns that a new phishing effort is targeting accounting companies and tax preparers, planting malware that allows hackers to get...
Lazarus group targets new sectors...
The notorious North Korean threat group, the Lazarus Group, has shifted its focus and updated its tactics as part of a campaign called DeathNote, according to cybersecurity firm Kaspersky. While...
Nexx smart home devices vulnerable...
A handful of faults in Nexx’s smart home gadgets that hackers can exploit are estimated to put over 40,000 residential and commercial premises at danger. This allows them to unlock...