Internet Security

Threat actors target govt networks exploiting Fortinet SSL-VPN CVE-2022-42475 bug

January 13, 2023 add comment
Recently patched Fortinet FortiOS SSL-VPN zero-day exploited in attacks against government organizations and government-related targets. Fortinet researchers reported that threat actors exploited the recently patched FortiOS SSL-VPN vulnerability (CVE-2022-42475)... Read more »

Critical bug in Cisco EoL Small Business Routers will receive no patch

January 12, 2023 add comment
Cisco warns of a critical flaw in small business RV016, RV042, RV042G, and RV082 routers, which have reached end of life (EoL). Cisco is warning of a critical vulnerability,... Read more »

Threat actors claim access to Telegram servers through insiders

January 12, 2023 add comment
Researchers reported that a threat actor claims to provide access to internal servers at Telegram for $20,000. SafetyDetectives reported that a member of a dark web marketplace is claiming... Read more »

Threat actors actively exploit Control Web Panel RCE following PoC release

January 12, 2023 add comment
Threat actors are actively exploiting a recently patched critical remote code execution (RCE) vulnerability in Control Web Panel (CWP). Threat actors are actively exploiting a recently patched critical vulnerability,... Read more »

Twitter: 200M dataset was not obtained through the exploitation of flaws in its systems

January 12, 2023 add comment
Twitter said that its investigation revealed that users’ data offered for sale online was not obtained from its systems. Twitter provided an update on its investigation launched after data... Read more »

Social marketplace Trustanduse exposes nearly half a million users

January 12, 2023 add comment
Security loopholes on social marketplace website trustanduse.com exposed data of around 439,000 users including many businesses for at least six months. Disclosing personal data on platforms providing digital services... Read more »

Royal Mail is suffering service disruption due to a ‘cyber incident’

January 11, 2023 add comment
Royal Mail, Britain’s postal service, announced it has suffered a “cyber incident” that caused a “severe service disruption.” Royal Mail, the British multinational postal service and courier company, announced this week that a... Read more »

Gootkit Loader campaign targets Australian Healthcare Industry

January 11, 2023 add comment
Threat actors are targeting organizations in the Australian healthcare sector with the Gootkit malware loader. Trend Micro researchers warn that Gootkit Loader is actively targeting the Australian healthcare industry.... Read more »

US CISA adds MS Exchange bug CVE-2022-41080 to its Known Exploited Vulnerabilities Catalog

January 11, 2023 add comment
US CISA added Microsoft Exchange elevation of privileges bug CVE-2022-41080 to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two new vulnerabilities to its Known... Read more »

Microsoft Patch Tuesday for January 2023 fixed actively exploited zero-day

January 11, 2023 add comment
Microsoft Patch Tuesday security updates for January 2023 fixed 97 flaws and an actively exploited zero-day. Microsoft Patch Tuesday security updates for January 2023 addressed a total of 98... Read more »
Subscribe to our Newsletter