Internet Security

Widespread exploitation by botnet operators of Zyxel firewall flaw

June 1, 2023 add comment
Threat actors are actively exploiting a command injection flaw, tracked as CVE-2023-28771, in Zyxel firewalls to install malware. Threat actors are actively attempting to exploit a command injection vulnerability,... Read more »

Experts warn of backdoor-like behavior within Gigabyte systems

May 31, 2023 add comment
Researchers discovered a suspected backdoor-like behavior within Gigabyte systems that exposes devices to compromise. Researchers from firmware security firm Eclypsium have discovered a suspected backdoor-like behavior within Gigabyte systems. The... Read more »

Threat actors are exploiting Barracuda Email Security Gateway bug since October 2022

May 31, 2023 add comment
Recently disclosed zero-day flaw in Barracusa Email Security Gateway (ESG) appliances had been actively exploited by attackers since October 2022. The network security solutions provider Barracuda recently warned customers... Read more »

Swiss real estate agency Neho fails to put a password on its systems

May 31, 2023 add comment
A misconfiguration of Swiss real estate agency Neho’s systems exposed sensitive credentials to the public. Neho, a Switzerland-based real estate agency, leaked credentials recently, potentially allowing threat actors to... Read more »

Microsoft found a new bug that allows bypassing SIP root restrictions in macOS

May 31, 2023 add comment
Apple fixed a vulnerability discovered by Microsoft researchers that lets attackers with root privileges bypass System Integrity Protection (SIP). Researchers from Microsoft discovered a vulnerability, tracked as CVE-2023-32369 and dubbed... Read more »

PyPI enforces 2FA authentication to prevent maintainers’ account takeover

May 30, 2023 add comment
PyPI is going to enforce two-factor authentication (2FA) for all project maintainers by the end of this year over security concerns. Due to security concerns, PyPI will be mandating... Read more »

A database containing 478,000 RaidForums members leaked online

May 30, 2023 add comment
The database of the popular RaidForums hacking forum has been leaked on a new hacking forum, 478,000 members exposed. A database belonging to the now-defunct RaidForums cybercrime platform has... Read more »

Beware of the new phishing technique “file archiver in the browser” that exploits zip domains

May 30, 2023 add comment
“file archiver in the browser” is a new phishing technique that can be exploited by phishers when victims visit a .ZIP domain. A new phishing technique called “file archiver... Read more »

BrutePrint Attack allows to unlock smartphones with brute-forcing fingerprint

May 30, 2023 add comment
Researchers devised an attack technique, dubbed BrutePrint Attack, that allows brute-forcing fingerprints on smartphones to bypass authentication. Researchers have devised an attack technique, dubbed BrutePrint, that allows to brute-force... Read more »

Lockbit ransomware attack on MCNA Dental impacts 8.9M individuals

May 29, 2023 add comment
Managed Care of North America (MCNA) Dental disclosed a data breach that impacted more than 8.9 million individuals. Managed Care of North America (MCNA) Dental suffered a data breach... Read more »
Subscribe to our Newsletter