Internet Security

Threat actors actively exploit Control Web Panel RCE following PoC release

January 12, 2023 add comment
Threat actors are actively exploiting a recently patched critical remote code execution (RCE) vulnerability in Control Web Panel (CWP). Threat actors are actively exploiting a recently patched critical vulnerability,... Read more »

Twitter: 200M dataset was not obtained through the exploitation of flaws in its systems

January 12, 2023 add comment
Twitter said that its investigation revealed that users’ data offered for sale online was not obtained from its systems. Twitter provided an update on its investigation launched after data... Read more »

Social marketplace Trustanduse exposes nearly half a million users

January 12, 2023 add comment
Security loopholes on social marketplace website trustanduse.com exposed data of around 439,000 users including many businesses for at least six months. Disclosing personal data on platforms providing digital services... Read more »

Royal Mail is suffering service disruption due to a ‘cyber incident’

January 11, 2023 add comment
Royal Mail, Britain’s postal service, announced it has suffered a “cyber incident” that caused a “severe service disruption.” Royal Mail, the British multinational postal service and courier company, announced this week that a... Read more »

Gootkit Loader campaign targets Australian Healthcare Industry

January 11, 2023 add comment
Threat actors are targeting organizations in the Australian healthcare sector with the Gootkit malware loader. Trend Micro researchers warn that Gootkit Loader is actively targeting the Australian healthcare industry.... Read more »

US CISA adds MS Exchange bug CVE-2022-41080 to its Known Exploited Vulnerabilities Catalog

January 11, 2023 add comment
US CISA added Microsoft Exchange elevation of privileges bug CVE-2022-41080 to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two new vulnerabilities to its Known... Read more »

Microsoft Patch Tuesday for January 2023 fixed actively exploited zero-day

January 11, 2023 add comment
Microsoft Patch Tuesday security updates for January 2023 fixed 97 flaws and an actively exploited zero-day. Microsoft Patch Tuesday security updates for January 2023 addressed a total of 98... Read more »

StrongPity APT spreads backdoored Android Telegram app via fake Shagle site

January 10, 2023 add comment
The StrongPity APT group targeted Android users with a trojanized version of the Telegram app served through a website impersonating a video chat service called Shagle. ESET researchers reported that StrongPity APT... Read more »

Zoom Rooms was affected by four “high” severity vulnerabilities

January 10, 2023 add comment
Zoom addressed four “high” severity vulnerabilities impacting its popular videoconferencing software Zoom Rooms. Zoom addressed four “high” severity vulnerabilities impacting its videoconferencing platform Zoom Rooms. Below are the details... Read more »

Remote code execution bug discovered in the popular JsonWebToken library

January 10, 2023 add comment
The open-source jsonwebtoken (JWT) library is affected by a high-severity security flaw that could lead to remote code execution. The open-source JsonWebToken (JWT) library is affected by a high-severity... Read more »
Subscribe to our Newsletter