Internet Security

UK communications regulator Ofcom hacked with a MOVEit file transfer zero-day

June 13, 2023 add comment
UK communications regulator Ofcom suffered a data breach after a Clop ransomware attack exploiting the MOVEit file transfer zero-day. UK’s communications regulator Ofcom disclosed a data breach after a... Read more »

Experts released PoC exploit for MOVEit Transfer CVE-2023-34362 flaw

June 13, 2023 add comment
Security firm Horizon3 released proof-of-concept (PoC) exploit code for the remote code execution (RCE) flaw CVE-2023-34362 in the MOVEit Transfer MFT. MOVEit Transfer is a managed file transfer that... Read more »

Intellihartx data breach exposed the personal and health info of 490,000 individuals

June 12, 2023 add comment
Intellihartx is notifying about 490,000 individuals that their personal information was compromised in the GoAnywhere zero-day attack in January. The Clop ransomware group has stolen stole personal and health... Read more »

FUD Malware obfuscation engine BatCloak continues to evolve

June 12, 2023 add comment
Researchers detailed a fully undetectable (FUD) malware obfuscation engine named BatCloak that is used by threat actors. Researchers from Trend Micro have analyzed the BatCloak, a fully undetectable (FUD) malware obfuscation... Read more »

Fortinet urges to patch a critical RCE flaw in Fortigate firewalls

June 12, 2023 add comment
Fortinet released security updates to fix a critical security flaw in its FortiGate firewalls that lead to remote code execution. Fortinet has released security patches to address a critical... Read more »

Xplain data breach also impacted the national Swiss railway FSS

June 12, 2023 add comment
The Play ransomware attack suffered by the IT services provider Xplain also impacted the national railway company of Switzerland (FSS) and the canton of Aargau. The Play ransomware attack... Read more »

Microsoft warns of multi-stage AiTM phishing and BEC attacks

June 11, 2023 add comment
Microsoft researchers warn of banking adversary-in-the-middle (AitM) phishing and BEC attacks targeting banking and financial organizations. Microsoft discovered multi-stage adversary-in-the-middle (AiTM) phishing and business email compromise (BEC) attacks against... Read more »

Security Affairs newsletter Round 423 by Pierluigi Paganini – International edition

June 11, 2023 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new... Read more »

Pro-Ukraine Cyber Anarchy Squad claims the hack of the Russian telecom provider Infotel JSC

June 11, 2023 add comment
Pro-Ukraine hackers Cyber Anarchy Squad claimed responsibility for the attack that hit Russian telecom provider Infotel JSC. Pro-Ukraine hacking group Cyber.Anarchy.Squad claimed responsibility for an attack on Russian telecom... Read more »

Experts found new MOVEit Transfer SQL Injection flaws

June 10, 2023 add comment
Progress Software released security updates to fix several new SQL injection vulnerabilities in the MOVEit Transfer application. Progress Software has released security updates to address new SQL injection vulnerabilities... Read more »
Subscribe to our Newsletter