Internet Security

A couple of bugs can be chained to hack Netcomm routers

January 18, 2023 add comment
A couple of critical vulnerabilities have been discovered in Netcomm rourers, experts warn of their potential exploitation in the wild. The vulnerabilities discovered in the Netcomm routers are a... Read more »

Myrocket HR platform’s data leak turns into privacy nightmare for employees

January 18, 2023 add comment
HR management platform myrocket.co has exposed the personal information of hundreds of thousands of employees and millions of job candidates. Original post at CyberNews On December 12, 2022, the... Read more »

Experts found SSRF flaws in four different Microsoft Azure services

January 18, 2023 add comment
SSRF vulnerabilities in four Microsoft Azure services could be exploited to gain unauthorized access to cloud resources. Researchers at the security firm Orca discovered that four different Microsoft Azure... Read more »

1,000 ships impacted by a ransomware attack on maritime software supplier DNV

January 17, 2023 add comment
A ransomware attack against the maritime software supplier DNV impacted approximately 1,000 vessels. About 1,000 vessels have been impacted by a ransomware attack against DNV, one of the major... Read more »

How to abuse GitHub Codespaces to deliver malicious content

January 17, 2023 add comment
Researchers demonstrated how to abuse a feature in GitHub Codespaces to deliver malware to victim systems. Trend Micro researchers reported that it is possible to abuse a legitimate feature... Read more »

Patch your Zoho ManageEngine instance immediately! PoC Exploit for CVE-2022-47966 will be released soon

January 17, 2023 add comment
A PoC exploit code for the unauthenticated remote code execution vulnerability CVE-2022-47966 in Zoho ManageEngine will be released soon. The CVE-2022-47966 flaw is an unauthenticated remote code execution vulnerability... Read more »

Fortinet observed three rogue PyPI packages spreading malware

January 17, 2023 add comment
Researchers discovered three malicious packages that have been uploaded to the Python Package Index (PyPI) repository by Lolip0p group. FortiGuard Labs researchers discovered three malicious PyPI packages (called ‘colorslib’, ‘httpslib’,... Read more »

Managing Asset Risks During Healthcare M&As

January 17, 2023 add comment
How healthcare delivery organizations (HDOs) can manage the IT asset risks during a healthcare M&A process. Mergers and Acquisitions (M&A), you’ve probably heard the term before. An M&A is... Read more »

Avast researchers released a free BianLian ransomware decryptor for some variants of the malware

January 16, 2023 add comment
Antivirus firm Avast released a free decryptor for the BianLian ransomware family that allows victims to recover locked files. Security firm Avast has released a free decryptor for the BianLian... Read more »

Experts spotted a backdoor that borrows code from CIA’s Hive malware

January 16, 2023 add comment
Netlab 360 observed unidentified threat actors using a new backdoor based on the US CIA’s Project Hive malware suite. Researchers from Qihoo Netlab 360 reported that unidentified threat actors using... Read more »
Subscribe to our Newsletter