Patch Released for RCE Vulnerability in pfSense Firewall
Patch Released for RCE Vulnerability in pfSense Firewall A critical vulnerability has been discovered in a plugin of Netgate’s pfSense firewall. The flaw is tracked as CVE-2022-31814&n...
Cisco Released Patches for Vulnerabilities Affecting Several Products
Cisco Released Patches for Vulnerabilities Affecting Several Products Three security issues impacting Cisco products were patched on Wednesday, including a high-severity vulnerability discov...
Zyxel NAS Devices are Affected by a Critical RCE Vulnerability
Zyxel NAS Devices are Affected by a Critical RCE Vulnerability Zyxel has announced fixes for a severe format string issue in its network attached storage products. The Taiwanese network giant’s ...
Illegal Marketplace WT1SHOP Seized After Nearly 6M Records Compromised...
Illegal Marketplace WT1SHOP Seized After Nearly 6M Records Compromised A global law enforcement operation has taken down the website and domains for WT1SHOP. WT1SHOP is an illegal marketplace often ...
Mirai Variant MooBot Targets RCE Vulnerabilities in D-Link Routers
Mirai Variant MooBot Targets RCE Vulnerabilities in D-Link Routers MooBot botnet is back for new attacks. The variant of the Mirai malware started a new campaign last month to exploit critical vulnera...
TikTok Denies Allegations of a 2.05 Billion Record Data Breach
TikTok Denies Allegations of a 2.05 Billion Record Data Breach Popular social media platform TikTok rejected claims that it had been compromised by threat actors who claimed to have obtained access to...
QNAP Fixes Zero-Day Recently Leveraged by DeadBolt Ransomware
QNAP Fixes Zero-Day Recently Leveraged by DeadBolt Ransomware The Taiwanese company QNAP cautions customers about DeadBolt ransomware attacks upon exploiting a zero-day vulnerabili...
Major Cyberattacks in Review: August 2022
Major Cyberattacks in Review: August 2022 Threat actors did not stay idle in August, and as always, they continued their attacks on small or large companies, government organizations, and critical in...
Attackers Targeting Banking Credentials: American Express and Google P...
Attackers Targeting Banking Credentials: American Express and Google Play Users at Risk Phishing has changed significantly over the past ten years, and scammers now have sophisticated tools to use fak...
1,800 Apps with Hardcoded AWS Credentials Show Supply Chain Risks
1,800 Apps with Hardcoded AWS Credentials Show Supply Chain Risks More than 1,800 mobile applications have hardcoded AWS credentials, according to Symantec, which has issued a warning about the p...
Spyware Firm Sold Android and iOS RCE Exploit for €8 Million
Spyware Firm Sold Android and iOS RCE Exploit for €8 Million Intellexa, a spyware firm that originated in Greece, has entered the market recently. Its work is similar to Pegasus Spyware and offers RCE...
Malicious Chrome Extensions Could Affect More Than 1.4 Million Users
Malicious Chrome Extensions Could Affect More Than 1.4 Million Users McAfee researchers discovered several malicious Google Chrome extensions. The total download count for the extensions is over 1.4 m...
Critical RCE Vulnerability in the Atlassian Bitbucket Server and Data ...
Critical RCE Vulnerability in the Atlassian Bitbucket Server and Data Center Atlassian recently issued a security advisory to notify Bitbucket Server and Data Center users about a critical v...
Twilio and MailChimp Attackers Hit 130 Organizations with Okta Phishin...
Twilio and MailChimp Attackers Hit 130 Organizations with Okta Phishing Campaign A larger phishing campaign that targeted 136 organizations and resulted in the theft of 9,931 account login ...
Threat Actors Stole LastPass Source Code Through a Compromised Develop...
Threat Actors Stole LastPass Source Code Through a Compromised Developer Account On 25th August, LastPass announced a breach and stated that its source code was stolen, along with some technical infor...
IBM Fixes Security Bypass Vulnerabilities Discovered in MQ Software
IBM Fixes Security Bypass Vulnerabilities Discovered in MQ Software IBM released security updates for two critical vulnerabilities in its message-oriented middleware IBM MQ. The vulnerabilities, ident...
Patch Available for Important LPE Vulnerability in VMware Tools
Patch Available for Important LPE Vulnerability in VMware Tools A security flaw identified in VMware Tools could lead to local privilege escalation attacks. A remote attacker with initial access can s...
Critical RCE Flaw Fixed in New Versions of GitLab
Critical RCE Flaw Fixed in New Versions of GitLab GitLab released patches where they fixed a critical remote code execution vulnerability. It is labeled CVE-2022-2884 with a CVSS score of 9....
Hackers Utilize AWS to Launch Phishing Attacks
Hackers Utilize AWS to Launch Phishing Attacks Phishing attacks are being launched by hackers using a tactic called Static Expressway. The newly-spread tactic lets hackers get their emails past Amazon...
Major Cyberattacks in Review: July 2022
Major Cyberattacks in Review: July 2022 Today’s world has many cyberattack targets, including large organizations, small businesses, and individuals. Any action, no matter how small, can put yo...