Internet Security

HPE Aruba Networking addressed four critical ArubaOS RCE flaws

May 2, 2024 add comment
HPE Aruba Networking addressed four critical remote code execution vulnerabilities impacting its ArubaOS network operating system. HPE Aruba Networking released April 2024 security updates that addressed four critical remote... Read more »

Threat actors hacked the Dropbox Sign production environment

May 2, 2024 add comment
Threat actors breached the Dropbox Sign production environment and accessed customer email addresses and hashed passwords Cloud storage provider DropBox revealed that threat actors have breached the production infrastructure... Read more »

CISA adds GitLab flaw to its Known Exploited Vulnerabilities catalog

May 2, 2024 add comment
CISA adds GitLab Community and Enterprise Editions improper access control vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a GitLab Community and Enterprise Editions... Read more »

Panda Restaurant Group disclosed a data breach

May 2, 2024 add comment
Panda Restaurant Group disclosed a data breach that occurred in March, resulting in the theft of associates’ personal information. Panda Restaurant Group disclosed a data breach that occurred in... Read more »

Cuttlefish malware targets enterprise-grade SOHO routers

May 1, 2024 add comment
A new malware named Cuttlefish targets enterprise-grade and small office/home office (SOHO) routers to harvest public cloud authentication data. Researchers at Lumen’s Black Lotus Labs discovered a new malware... Read more »

Ex-NSA employee sentenced to 262 months for attempting to transfer classified documents to Russia

May 1, 2024 add comment
A former U.S. NSA employee has been sentenced to nearly 22 years in prison for attempting to sell classified documents to Russia. Jareh Sebastian Dalke (32), of Colorado Springs,... Read more »

A flaw in the R programming language could allow code execution

May 1, 2024 add comment
A flaw in the R programming language enables the execution of arbitrary code when parsing specially crafted RDS and RDX files. A vulnerability, tracked as CVE-2024-27322 (CVSS v3: 8.8), in the... Read more »

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall

May 1, 2024 add comment
The China-linked threat actors Muddling Meerkat are manipulating DNS to probe networks globally since 2019. Infoblox researchers observed China-linked threat actors Muddling Meerkat using sophisticated DNS activities since 2019 to bypass... Read more »

Notorious Finnish Hacker sentenced to more than six years in prison

April 30, 2024 add comment
Finnish hacker was sentenced to more than six years in prison for hacking into an online psychotherapy clinic and attempted extortion. A popular 26-year-old Finnish hacker Aleksanteri Kivimäki was... Read more »

CISA guidelines to protect critical infrastructure against AI-based threats

April 30, 2024 add comment
The US government’s cybersecurity agency CISA published a series of guidelines to protect critical infrastructure against AI-based attacks. CISA collaborated with Sector Risk Management Agencies (SRMAs) and regulatory agencies... Read more »
Subscribe to our Newsletter