July 2024

Microsoft Says Ransomware Gangs Exploiting Just-Patched VMware ESXi Flaw

CVE-2024-37085, Microsoft, Ransomware, VMWare, VMware ESXi, Vulnerabilities /

Microsoft Says Ransomware Gangs Exploiting Just-Patched VMware ESXi Flaw 2024-07-29 at 21:46 By Ryan Naraine VMware did not mention in-the-wild exploitation for CVE-2024-37085 but Microsoft says ransomware gangs are abusing the just-patched flaw. The post Microsoft Says Ransomware Gangs Exploiting Just-Patched VMware ESXi Flaw appeared first on SecurityWeek. This article is an excerpt from SecurityWeek […]

Microsoft Says Ransomware Gangs Exploiting Just-Patched VMware ESXi Flaw Read More »

Phishing Campaign Exploited Proofpoint Email Protections for Spoofing

EchoSpoofing, email security, phishing, Proofpoint, spoofing /

Phishing Campaign Exploited Proofpoint Email Protections for Spoofing 2024-07-29 at 21:46 By Ionut Arghire Threat actors have exploited Proofpoint’s email protection service to deliver millions of spoofed phishing emails. The post Phishing Campaign Exploited Proofpoint Email Protections for Spoofing appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Phishing Campaign Exploited Proofpoint Email Protections for Spoofing Read More »

Tesla asks customers to stop being wet blankets about chargers

Uncategorized /

Tesla asks customers to stop being wet blankets about chargers 2024-07-29 at 21:01 By Brandon Vigliarolo Trick appears to speed powering up but could cause damage to cables Tesla has asked owners to stop wrapping wet towels around handles to speed up the recharging process, warning that this can damage its Supercharger stalls.… This article

Tesla asks customers to stop being wet blankets about chargers Read More »

Critical Flaw in Acronis Cyber Infrastructure Exploited in the Wild

Uncategorized /

Critical Flaw in Acronis Cyber Infrastructure Exploited in the Wild 2024-07-29 at 20:31 By Cybersecurity company Acronis is warning that a now-patched critical security flaw impacting its Cyber Infrastructure (ACI) product has been exploited in the wild. The vulnerability, tracked as CVE-2023-45249 (CVSS score: 9.8), concerns a case of remote code execution that stems from

Critical Flaw in Acronis Cyber Infrastructure Exploited in the Wild Read More »

EU regulator reportedly set to give the nod to HPE-Juniper deal

Uncategorized /

EU regulator reportedly set to give the nod to HPE-Juniper deal 2024-07-29 at 20:01 By Dan Robinson Aruba, Aruba! Some network pros worry it will lead to less choice The European Commission is set to deliver unconditional approval for HPE’s proposed $14 billion purchase of Juniper Networks, according to reports.… This article is an excerpt

EU regulator reportedly set to give the nod to HPE-Juniper deal Read More »

Some good may come out of the CrowdStrike outage

Bitdefender, CrowdStrike, Don't miss, Endpoint Security, Fortinet, fraud, Hot stuff, Malware, Microsoft, News, SecureWorks, Trellix, UpGuard, Windows /

Some good may come out of the CrowdStrike outage 2024-07-29 at 19:31 By Zeljka Zorz Estimated financial losses due to the recent massive IT outage triggered by the faulty CrowdStrike update are counted in billions, but the unfortunate incident is having several positive effects, as well. Some silver linings As CrowdStrike was forced to explain,

Some good may come out of the CrowdStrike outage Read More »

French internet cables cut in act of sabotage that caused outages across country

Uncategorized /

French internet cables cut in act of sabotage that caused outages across country 2024-07-29 at 18:01 By Matthew Connatser Axe attack comes just days after arsonists target rail network Fiber optic internet cables across France have been cut in an apparent act of sabotage, resulting in outages across the country.… This article is an excerpt

French internet cables cut in act of sabotage that caused outages across country Read More »

Intruders at HealthEquity rifled through storage, stole 4.3M people’s data

Uncategorized /

Intruders at HealthEquity rifled through storage, stole 4.3M people’s data 2024-07-29 at 17:01 By Connor Jones No mention of malware or ransomware – somewhat of a rarity these days HealthEquity, a US fintech firm for the healthcare sector, admits that a “data security event” it discovered at the end of June hit the data of

Intruders at HealthEquity rifled through storage, stole 4.3M people’s data Read More »

Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails

Uncategorized /

Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails 2024-07-29 at 16:31 By An unknown threat actor has been linked to a massive scam campaign that exploited an email routing misconfiguration in email security vendor Proofpoint’s defenses to send millions of messages spoofing various legitimate companies. “These emails echoed from official Proofpoint

Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails Read More »

Google apologizes for breaking password manager for millions of Windows users with iffy Chrome update

Uncategorized /

Google apologizes for breaking password manager for millions of Windows users with iffy Chrome update 2024-07-29 at 16:16 By Richard Speed Happy Sysadmin Day Google celebrated Sysadmin Day last week by apologizing for breaking its password manager for millions of Windows users – just as many Windows admins were still hard at work mitigating the

Google apologizes for breaking password manager for millions of Windows users with iffy Chrome update Read More »

Knowing your Enemy: Situational Awareness in Cyber Defenses

Uncategorized /

Knowing your Enemy: Situational Awareness in Cyber Defenses 2024-07-29 at 16:16 By David Broggy Most homeowners know that a lock is a good idea as a basic defense against invaders, and leaving the front door unlocked is simply unwise. Unfortunately, when it comes to creating a strong cyber defense it’s not that simple. Attackers have

Knowing your Enemy: Situational Awareness in Cyber Defenses Read More »

CISO Webinar Outlines Trustwave’s Journey to Adopting Microsoft E5 Security Offerings

Perspectives /

CISO Webinar Outlines Trustwave’s Journey to Adopting Microsoft E5 Security Offerings 2024-07-29 at 16:01 By The decision on whether to implement the Microsoft Security offerings available with the Microsoft 365 E5 license certainly involves deep security discussions, but it’s also a business decision. In that respect, this process allows security leaders to engage with their CFO and

CISO Webinar Outlines Trustwave’s Journey to Adopting Microsoft E5 Security Offerings Read More »

Critical Acronis Cyber Infrastructure vulnerability exploited in the wild (CVE-2023-45249)

Acronis, CVE, Don't miss, Hot stuff, MSP, News, storage, vulnerability /

Critical Acronis Cyber Infrastructure vulnerability exploited in the wild (CVE-2023-45249) 2024-07-29 at 15:46 By Zeljka Zorz CVE-2023-45249, a critical vulnerability affecting older versions of Acronis Cyber Infrastructure, is being exploited by attackers. About Acronis Cyber Infrastructure Acronis is a privately held Swiss cybersecurity and data protection technology company. Acronis Cyber Infrastructure (ACI) is an IT

Critical Acronis Cyber Infrastructure vulnerability exploited in the wild (CVE-2023-45249) Read More »

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw

Application Security, Featured, OAuth, Vulnerabilities, XSS /

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw 2024-07-29 at 15:16 By Kevin Townsend Researchers discovered and published details of an XSS attack that could potentially impact millions of websites around the world. The post Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw appeared first on SecurityWeek. This article is an

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw Read More »

Acronis Product Vulnerability Exploited in the Wild

Acronis, exploited, Vulnerabilities /

Acronis Product Vulnerability Exploited in the Wild 2024-07-29 at 15:16 By Ionut Arghire Acronis warns of a critical-severity Acronis Cyber Infrastructure (ACI) vulnerability being exploited in attacks. The post Acronis Product Vulnerability Exploited in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Acronis Product Vulnerability Exploited in the Wild Read More »

Scroll to Top