Internet Security

VMware warns of critical code execution bugs in vRealize Log Insight

January 24, 2023 add comment
A critical vulnerability in VMware vRealize Log Insight appliance can allow an unauthenticated attacker to take full control of a target system. VMware addressed multiple vulnerabilities, tracked as CVE-2022-31706,... Read more »

Pakistan hit by nationwide power outage, is it the result of a cyber attack?

January 24, 2023 add comment
Pakistan suffered a nationwide blackout, local authorities are investigating the cause and suspect it was the result of a cyberattack. On Monday, a nationwide blackout in Pakistan left millions... Read more »

GoTo revealed that threat actors stole customers’ backups and encryption key for some of them

January 24, 2023 add comment
GoTo is notifying customers that its development environment was breached in November 2022, attackers stole customers’ backups and encryption key. GoTo, formerly LogMeIn Inc, is a flexible-work provider of software as a... Read more »

FBI confirms that North Korea-linked Lazarus APT is behind Harmony Horizon Bridge $100 million cyber heist

January 24, 2023 add comment
The U.S. FBI attributes the $100 million cyber heist against Harmony Horizon Bridge to North Korea-linked Lazarus APT. The U.S. Federal Bureau of Investigation (FBI) this week confirmed that in... Read more »

Meta Platforms expands features for EE2E on Messenger App

January 24, 2023 add comment
Meta Platforms announced the implementation of more features into its end-to-end encrypted Messanger App. Meta Platforms started gradually expanding testing default end-to-end encryption for Messenger. The company announced that... Read more »

CISA added Zoho ManageEngine RCE (CVE-2022-47966) to its Known Exploited Vulnerabilities Catalog

January 24, 2023 add comment
US CISA added the Zoho ManageEngine RCE vulnerability CVE-2022-47966 to its Known Exploited Vulnerabilities Catalog. The US CISA added the Zoho ManageEngine remote code execution flaw (CVE-2022-47966) to its Known... Read more »

Researcher found US ‘No Fly List’ on an unsecured server

January 24, 2023 add comment
A researcher discovered a U.S. No Fly List exposed on the Internet, the sensitive data were hosted on a server run by US airline CommuteAir. Researchers Maia Arson Crimew... Read more »

Apple backported patches for CVE-2022-42856 zero-day on older iPhones, iPads

January 23, 2023 add comment
Apple has backported the security updates for the zero-day vulnerability CVE-2022-42856 to older iPhones and iPads. On December 2022, Apple released security updates to address a new zero-day vulnerability,... Read more »

Two flaws in Samsung Galaxy Store can allow to install Apps and execute JS code

January 23, 2023 add comment
Researchers found two flaws in Samsung Galaxy Store that could be exploited to install applications or achieve code execution on the devices. Researchers from cybersecurity firm NCC Group published... Read more »

Companies impacted by Mailchimp data breach warn their customers

January 23, 2023 add comment
The recent Mailchimp data breach has impacted multiple organizations, some of them are already notifying their customers. The popular email marketing and newsletter platform Mailchimp recently disclosed a news... Read more »
Subscribe to our Newsletter