Internet Security

Security Affairs newsletter Round 428 by Pierluigi Paganini – International edition

July 15, 2023 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new... Read more »

Russia-linked APT Gamaredon starts stealing data from victims between 30 and 50 minutes after the initial compromise

July 15, 2023 add comment
Ukraine’s Computer Emergency Response Team (CERT-UA) states that Russia-linked APT Gamaredon starts stealing data 30 minutes after the initial compromise. Ukraine’s Computer Emergency Response Team (CERT-UA) is warning that... Read more »

The source code of the BlackLotus UEFI Bootkit was leaked on GitHub

July 14, 2023 add comment
The source code for the BlackLotus UEFI bootkit has been published on GitHub and experts warn of the risks of proliferation of custom versions. Researchers from ESET discovered in... Read more »

US CISA warns of Rockwell Automation ControlLogix flaws

July 14, 2023 add comment
The U.S. CISA warns of two flaws impacting Rockwell Automation ControlLogix that can lead to remote code execution and DoS attacks. The U.S. Cybersecurity and Infrastructure Security Agency (CISA)... Read more »

Indexing Over 15 Million WordPress Websites with PWNPress

July 14, 2023 add comment
Sicuranex’s PWNPress platform indexed over 15 million WordPress websites, it collects data related to vulnerabilities and misconfigurations Leveraging the extensive Common Crawl dataset and pushing the boundaries of data... Read more »

New AVrecon botnet remained under the radar for two years while targeting SOHO Routers

July 14, 2023 add comment
A new malware dubbed AVrecon targets small office/home office (SOHO) routers, it infected over 70,000 devices from 20 countries. Lumen Black Lotus Labs uncovered a long-running hacking campaign targeting... Read more »

Apple re-released Rapid Security Response to fix recently disclosed zero-day

July 13, 2023 add comment
Apple re-released its Rapid Security Response updates for iOS and macOS after fixing browsing issues on certain websites caused by the first RSR. Apple has re-released its Rapid Security... Read more »

Zimbra urges customers to manually fix actively exploited zero-day reported by Google TAG

July 13, 2023 add comment
Zimbra has released updates to address a zero-day vulnerability actively exploited in attacks aimed at Zimbra Collaboration Suite (ZCS) email servers. Zimbra urges customers to manually install updates to... Read more »

Chinese hackers compromised emails of U.S. Government agencies

July 13, 2023 add comment
Chinese hackers have compromised the emails of an unnamed US Federal Civilian Executive Branch (FCEB) agency. In Mid-June a malicious email activity was reported by an unnamed US Federal... Read more »

SonicWall urges organizations to fix critical flaws in GMS/Analytics products

July 13, 2023 add comment
SonicWall fixed multiple critical vulnerabilities impacting its GMS firewall management and Analytics management and reporting engine. SonicWall addressed multiple critical vulnerabilities in its Global Management System (GMS) firewall management... Read more »
Subscribe to our Newsletter