General Security News
-
Over 60,000 Online Exchange Servers Unpatched for RCE Vulnerability ProxyNotShell
One of the two security flaws targeted by ProxyNotShell exploits, CVE-2022-41082 RCE vulnerability, has not been patched on more than 60,000...
-
Irish Regulators Fine Facebook $414 Million for Forcing Users to Accept Targeted Ads
The Irish Data Protection Commission (DPC) has fined Meta Platforms €390 million (roughly $414 million) over its handling of user data for serving...
-
Qualcomm Chipsets and Lenovo BIOS Get Security Updates to Fix Multiple Flaws
Qualcomm on Tuesday released patches to address multiple security flaws in its chipsets, some of which could be exploited to cause information...
-
The FBI's Perspective on Ransomware
Ransomware: contemporary threats, how to prevent them and how the FBI can help In April 2021, Dutch supermarkets faced a food shortage. The cause...
-
Lockbit Ransomware Group Apologized For the Attack On Hospital for Sick Children
Following the hospital’s breach in the middle of December, the LockBit ransomware group has expressed regret and given it a free decryption key....
-
RedThief Hacker Group Targeting Students in The U.K. to Steal Financial Data
In an activity dubbed RedThief (aka RedZei), Chinese-speaking scammers have been targeting Chinese international students in the UK for more than...
-
New shc-based Linux Malware Targeting Systems with Cryptocurrency Miner
A new Linux malware developed using the shell script compiler (shc) has been observed deploying a cryptocurrency miner on compromised systems. "It...
-
Synology Releases Patch for Critical RCE Vulnerability Affecting VPN Plus Servers
Synology has released security updates to address a critical flaw impacting VPN Plus Server that could be exploited to take over affected systems....
-
Enforcement vs. Enrollment-based Security: How to Balance Security and Employee Trust
Challenges with an enforcement-based approach An enforcement-based approach to security begins with a security policy backed by security controls,...
-
Triple Extortion Ransomware: How to Protect Your Organization?
Ransomware strikes businesses every 11 seconds. The ransomware attack volume is already at record levels, but we’re hearing it’s only getting...
-
EarSpy – A New Attack on Android Devices Use Motion Sensors to Steal Sensitive Data
There has been a new eavesdropping attack developed by a team of security experts for Android devices which has been dubbed “EarSpy.” With the...
-
WordPress Security Alert: New Linux Malware Exploiting Over Two Dozen CMS Flaws
WordPress sites are being targeted by a previously unknown strain of Linux malware that exploits flaws in over two dozen plugins and themes to...