Internet Security

Security Affairs newsletter Round 454 by Pierluigi Paganini – INTERNATIONAL EDITION

January 13, 2024 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new... Read more »

Akira ransomware targets Finnish organizations

January 13, 2024 add comment
The Finish National Cybersecurity Center (NCSC-FI) warns of increased Akira ransomware attacks targeting NAS and tape backup devices of organizations in the country. The Finish National Cybersecurity Center (NCSC-FI) reported... Read more »

GitLab fixed a critical zero-click account hijacking flaw

January 13, 2024 add comment
GitLab addressed two critical flaws impacting both the Community and Enterprise Edition, including a critical zero-click account hijacking vulnerability GitLab has released security updates to address two critical vulnerabilities... Read more »

Juniper Networks fixed a critical RCE bug in its firewalls and switches

January 12, 2024 add comment
Juniper Networks fixed a critical pre-auth remote code execution (RCE) flaw, tracked as CVE-2024-21591, in its SRX Series firewalls and EX Series switches. Juniper Networks released security updates to... Read more »

Researchers created a PoC for Apache OFBiz flaw CVE-2023-51467

January 12, 2024 add comment
Researchers published a proof-of-concept (PoC) code for the recently disclosed critical flaw CVE-2023-51467 in the Apache OfBiz. Researchers from cybersecurity firm VulnCheck have created a proof-of-concept (PoC) exploit code for the recently... Read more »

Vast Voter Data Leaks Cast Shadow Over Indonesia ’s 2024 Presidential Election

January 12, 2024 add comment
Investigators from Resecurity’s HUNTER (HUMINT) warn that Indonesia is increasingly being targeted by cyber-threat actors. Investigators from Resecurity’s HUNTER (HUMINT) have found that Indonesia is increasingly being targeted by... Read more »

Team Liquid’s wiki leak exposes 118K users

January 12, 2024 add comment
Liquipedia, an online e-sports platform run by Team Liquid, exposed a database revealing its users’ email addresses and other details. Users of the e-sports knowledge base were exposed via... Read more »

CISA adds Ivanti and Microsoft SharePoint bugs to its Known Exploited Vulnerabilities catalog

January 11, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Ivanti Connect Secure and Microsoft SharePoint bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added an Ivanti... Read more »

Two zero-day bugs in Ivanti Connect Secure actively exploited

January 11, 2024 add comment
Ivanti revealed that two threat actors are exploiting two zero-day vulnerabilities in its Connect Secure (ICS) and Policy Secure. Software firm Ivanti reported that threat actors are exploiting two... Read more »

X Account of leading cybersecurity firm Mandiant was hacked because not adequately protected

January 11, 2024 add comment
The X account of cybersecurity firm Mandiant was likely hacked through a brute-force password attack, the company revealed. Last week, threat actors hacked the X account of cybersecurity firm... Read more »
Subscribe to our Newsletter