Internet Security

Polyfill.io Supply Chain Attack: 384,773 hosts still embedding a polyfill JS script linking to the malicious domain

July 5, 2024 add comment
Cybersecurity company Censys has identified over 380,000 hosts that are still referencing the malicious polyfill.io domain. Censys reported that over 380,000 internet-exposed hosts are still referencing the malicious polyfill.io... Read more »

New Golang-based Zergeca Botnet appeared in the threat landscape

July 5, 2024 add comment
Researchers uncovered a new Golang-based botnet called Zergeca that can carry out distributed denial-of-service (DDoS) attacks. Researchers at the QiAnXin XLab team uncovered a new Golang-based botnet called Zergeca... Read more »

Microsoft discloses 2 flaws in Rockwell Automation PanelView Plus

July 5, 2024 add comment
Microsoft discovered two flaws in Rockwell Automation PanelView Plus that remote, unauthenticated attackers could exploit. Microsoft responsibly disclosed two vulnerabilities in Rockwell Automation PanelView Plus that remote, unauthenticated attackers... Read more »

Hackers compromised Ethereum mailing list and launched a crypto draining attack

July 5, 2024 add comment
Hackers compromised Ethereum ‘s mailing list provider and sent phishing messages to the members attempting to drain their crypto funds. Hackers compromised Ethereum’s mailing list provider and on the... Read more »

OVHcloud mitigated a record-breaking DDoS attack in April 2024

July 4, 2024 add comment
OVHcloud successfully mitigated a record-breaking DDoS attack in April, which reached 840 million packets per second (Mpps). The cloud services provider OVHcloud announced it has mitigated a record-breaking distributed... Read more »

Healthcare fintech firm HealthEquity disclosed a data breach

July 4, 2024 add comment
Healthcare firm HealthEquity disclosed a data breach caused by a partner’s compromised account that exposed protected health information. Healthcare fintech firm HealthEquity disclosed a data breach after a partner’s... Read more »

Brazil data protection authority bans Meta from training AI models with data originating in the country

July 4, 2024 add comment
Brazil’s data protection authority temporarily banned Meta from using data originating in the country to train its artificial intelligence. Brazil’s data protection authority, Autoridade Nacional de Proteção de Dados... Read more »

Splunk fixed tens of flaws in Splunk Enterprise and Cloud Platform

July 4, 2024 add comment
Technology company Splunk released security updates to address 16 vulnerabilities in Splunk Enterprise and Cloud Platform. Technology company Splunk addressed 16 vulnerabilities in Splunk Enterprise and Cloud Platform, including... Read more »

Hackers obtained user data from Twilio-owned 2FA authentication app Authy

July 4, 2024 add comment
Twilio states that threat actors have identified the phone numbers of users of its two-factor authentication app, Authy, TechCrunch reported. Last week, the notorious hacker ShinyHunters claimed to have... Read more »

Operation Morpheus took down 593 Cobalt Strike servers used by threat actors

July 3, 2024 add comment
An international law enforcement operation code-named Operation Morpheus led to the takedown of 593 Cobalt Strike servers used by crooks. An international law enforcement operation, code-named Operation Morpheus, aimed... Read more »
Subscribe to our Newsletter