Featured

Google Warns of Chrome Browser Zero-Day Being Exploited

CVE-2024-0519, Featured, Google Chrome, V8 Engine, Vulnerabilities, Zero-Day /

Google Warns of Chrome Browser Zero-Day Being Exploited 2024-01-16 at 23:31 By Ryan Naraine The exploited zero-day, tagged as CVE-2024-0519, is described as an out-of-bounds memory access issue in the V8 JavaScript engine. The post Google Warns of Chrome Browser Zero-Day Being Exploited appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS […]

React to this headline:

Loading spinner

Google Warns of Chrome Browser Zero-Day Being Exploited Read More »

Hacker Conversations: HD Moore and the Line Between Black and White

Featured, Hacker Conversations, HD Moore, Metasploit /

Hacker Conversations: HD Moore and the Line Between Black and White 2024-01-16 at 14:47 By Kevin Townsend SecurityWeek talked to HD Moore, best known as the founder and original developer of Metasploit. The post Hacker Conversations: HD Moore and the Line Between Black and White appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Hacker Conversations: HD Moore and the Line Between Black and White Read More »

Government, Military Targeted as Widespread Exploitation of Ivanti Zero-Days Begins

exploited, Featured, Ivanti, Malware & Threats, Zero-Day /

Government, Military Targeted as Widespread Exploitation of Ivanti Zero-Days Begins 2024-01-16 at 12:46 By Eduard Kovacs The recently disclosed Ivanti VPN zero-days have been exploited to hack at least 1,700 devices, including government, telecoms, defense, and tech. The post Government, Military Targeted as Widespread Exploitation of Ivanti Zero-Days Begins appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Government, Military Targeted as Widespread Exploitation of Ivanti Zero-Days Begins Read More »

New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise

Application Security, Featured, PyTorch, supply chain, Supply Chain Security /

New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise 2024-01-12 at 14:31 By Ionut Arghire Researchers detail a CI/CD attack leading to PyTorch releases compromise via GitHub Actions self-hosted runners. The post New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise Read More »

Mandiant Details How Its X Account Was Hacked

Cryptocurrency, cybercrime, Featured, Mandiant /

Mandiant Details How Its X Account Was Hacked 2024-01-11 at 14:32 By Eduard Kovacs Mandiant’s X account was hacked as a result of a brute force attack as part of a cryptocurrency scheme that earned at least $900k. The post Mandiant Details How Its X Account Was Hacked appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Mandiant Details How Its X Account Was Hacked Read More »

Hewlett Packard Enterprise to Acquire Juniper Networks for $14 Billion

Artificial Intelligence, Featured, Funding/M&A, Network Security /

Hewlett Packard Enterprise to Acquire Juniper Networks for $14 Billion 2024-01-10 at 05:18 By SecurityWeek News This acquisition is expected to double HPE’s networking business and expand its portfolio with AI-native networking offerings. The post Hewlett Packard Enterprise to Acquire Juniper Networks for $14 Billion appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Hewlett Packard Enterprise to Acquire Juniper Networks for $14 Billion Read More »

Bosch Nutrunner Vulnerabilities Could Aid Hacker Attacks Against Automotive Production Lines

Featured, ICS, ICS/OT, IoT, IoT Security, vulnerability /

Bosch Nutrunner Vulnerabilities Could Aid Hacker Attacks Against Automotive Production Lines 2024-01-09 at 16:01 By Eduard Kovacs Hackers can take complete control of Bosch Rexroth nutrunners, installing ransomware or altering settings to cause financial impact and brand damage. The post Bosch Nutrunner Vulnerabilities Could Aid Hacker Attacks Against Automotive Production Lines appeared first on SecurityWeek.

React to this headline:

Loading spinner

Bosch Nutrunner Vulnerabilities Could Aid Hacker Attacks Against Automotive Production Lines Read More »

Merck Settles NotPetya Insurance Claim, Leaving Cyberwar Definition Unresolved

cyber insurance, Cyberwarfare, Featured, Merck, NotPetya /

Merck Settles NotPetya Insurance Claim, Leaving Cyberwar Definition Unresolved 2024-01-05 at 18:32 By Kevin Townsend In a landmark case that blurs the lines between cyber and kinetic warfare, Merck reached a settlement with insurers over a $1.4 billion claim stemming from the NotPetya malware attack. The post Merck Settles NotPetya Insurance Claim, Leaving Cyberwar Definition

React to this headline:

Loading spinner

Merck Settles NotPetya Insurance Claim, Leaving Cyberwar Definition Unresolved Read More »

RIPE Account Hacking Leads to Major Internet Outage at Orange Spain 

BGP, Featured, Mobile & Wireless, Orange /

RIPE Account Hacking Leads to Major Internet Outage at Orange Spain  2024-01-04 at 13:46 By Eduard Kovacs Orange Spain’s internet went down for several hours after its RIPE account was hacked, likely after malware stole the credentials. The post RIPE Account Hacking Leads to Major Internet Outage at Orange Spain  appeared first on SecurityWeek. This

React to this headline:

Loading spinner

RIPE Account Hacking Leads to Major Internet Outage at Orange Spain  Read More »

Xerox Confirms Data Breach at US Subsidiary Following Ransomware Attack

data breach, Data Breaches, Featured, Ransomware /

Xerox Confirms Data Breach at US Subsidiary Following Ransomware Attack 2024-01-03 at 13:18 By Ionut Arghire Xerox says personal information was stolen in a cyberattack at US subsidiary Xerox Business Solutions. The post Xerox Confirms Data Breach at US Subsidiary Following Ransomware Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Xerox Confirms Data Breach at US Subsidiary Following Ransomware Attack Read More »

States and Congress Wrestle With Cybersecurity After Iran Attacks Small Town Water Utilities

Featured, ICS, ICS/OT, Water /

States and Congress Wrestle With Cybersecurity After Iran Attacks Small Town Water Utilities 2024-01-03 at 00:16 By Associated Press The hacking of a municipal water plant is prompting new warnings from U.S. security officials at a time when governments are wrestling with how to harden water utilities against cyberattacks. The post States and Congress Wrestle

React to this headline:

Loading spinner

States and Congress Wrestle With Cybersecurity After Iran Attacks Small Town Water Utilities Read More »

Critical Apache OFBiz Vulnerability in Attacker Crosshairs

Apache, exploited, Featured, Vulnerabilities /

Critical Apache OFBiz Vulnerability in Attacker Crosshairs 2023-12-29 at 13:17 By Eduard Kovacs Shadowserver sees possible in-the-wild exploitation of a critical Apache OFBiz vulnerability tracked as CVE-2023-49070. The post Critical Apache OFBiz Vulnerability in Attacker Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Critical Apache OFBiz Vulnerability in Attacker Crosshairs Read More »

Mysterious Apple SoC Feature Exploited to Hack Kaspersky Employee iPhones

exploit, Featured, iOS, Mobile & Wireless, Operation Triangulation /

Mysterious Apple SoC Feature Exploited to Hack Kaspersky Employee iPhones 2023-12-28 at 14:01 By Ionut Arghire iOS zero-click attack targeting Kaspersky iPhones bypassed hardware-based security protections to take over devices. The post Mysterious Apple SoC Feature Exploited to Hack Kaspersky Employee iPhones appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Mysterious Apple SoC Feature Exploited to Hack Kaspersky Employee iPhones Read More »

Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day

Barracuda, email security, Featured, Malware & Threats, Zero-Day /

Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day 2023-12-27 at 13:16 By Eduard Kovacs Chinese hackers exploited a zero-day tracked as CVE-2023-7102 to deliver malware to Barracuda Email Security Gateway (ESG) appliances. The post Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day Read More »

Google Rushes to Patch Eighth Chrome Zero-Day This Year

Chrome, Featured, Vulnerabilities, Zero-Day /

Google Rushes to Patch Eighth Chrome Zero-Day This Year 21/12/2023 at 13:48 By Ionut Arghire Google warns of in-the-wild exploitation of CVE-2023-7024, a new Chrome vulnerability, the eighth documented this year. The post Google Rushes to Patch Eighth Chrome Zero-Day This Year appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Google Rushes to Patch Eighth Chrome Zero-Day This Year Read More »

BlackCat Strikes Back: Ransomware Gang “Unseizes” Website, Vows No Limits on Targets

Featured, Ransomware, takedown, Tracking & Law Enforcement /

BlackCat Strikes Back: Ransomware Gang “Unseizes” Website, Vows No Limits on Targets 20/12/2023 at 18:32 By Eduard Kovacs The BlackCat/Alphv ransomware group is dealing with the government operation that resulted in website seizures and a decryption tool. The post BlackCat Strikes Back: Ransomware Gang “Unseizes” Website, Vows No Limits on Targets appeared first on SecurityWeek.

React to this headline:

Loading spinner

BlackCat Strikes Back: Ransomware Gang “Unseizes” Website, Vows No Limits on Targets Read More »

VF Corp Disrupted by Cyberattack, Online Operations Impacted

cyberattack, Data Breaches, Featured, Ransomware, VF Corp /

VF Corp Disrupted by Cyberattack, Online Operations Impacted 18/12/2023 at 19:17 By Ryan Naraine VF Corporation (NYSE: VFC), which owns and operates some of the biggest apparel and footwear brands, has been hit by a ransomware attack that included the theft of sensitive corporate and personal data. The post VF Corp Disrupted by Cyberattack, Online

React to this headline:

Loading spinner

VF Corp Disrupted by Cyberattack, Online Operations Impacted Read More »

Food Giant Kraft Heinz Targeted by Ransomware Group

Featured, Ransomware /

Food Giant Kraft Heinz Targeted by Ransomware Group 15/12/2023 at 13:30 By Eduard Kovacs A ransomware group claims to have breached the systems of Kraft Heinz, but the food giant says it’s unable to verify the claims.  The post Food Giant Kraft Heinz Targeted by Ransomware Group appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Food Giant Kraft Heinz Targeted by Ransomware Group Read More »

Chinese APT Volt Typhoon Linked to Unkillable SOHO Router Botnet 

Black Lotus Labs, Featured, Fortinet, Nation-State, Netgear, Network Security, Volt Typhoon /

Chinese APT Volt Typhoon Linked to Unkillable SOHO Router Botnet  13/12/2023 at 20:31 By Ryan Naraine Malware hunters have set eyes on an impossible to kill botnet packed with end-of-life SOHO routers and connects it to a Chinese APT targeting US critical infrastructure. The post Chinese APT Volt Typhoon Linked to Unkillable SOHO Router Botnet 

React to this headline:

Loading spinner

Chinese APT Volt Typhoon Linked to Unkillable SOHO Router Botnet  Read More »

Cyberattack Cripples Ukraine’s Largest Telcom Operator

Cyberwarfare, Featured, Kyivstar, Russia, Ukraine /

Cyberattack Cripples Ukraine’s Largest Telcom Operator 13/12/2023 at 01:31 By SecurityWeek News Kyivstar, the largest mobile network operator in Ukraine, was hit by a massive cyberattack on Tuesday, disrupting mobile and internet communications for millions of citizens. The post Cyberattack Cripples Ukraine’s Largest Telcom Operator appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Cyberattack Cripples Ukraine’s Largest Telcom Operator Read More »

Scroll to Top