Internet Security

FortiJump flaw CVE-2024-47575 has been exploited in zero-day attacks since June 2024

October 24, 2024 add comment
The “FortiJump” flaw (CVE-2024-47575) has been exploited in zero-day attacks since June 2024, impacting over 50 servers, says Mandiant. A new report published by Mandiant states that the recently... Read more »

U.S. CISA adds Fortinet FortiManager flaw to its Known Exploited Vulnerabilities catalog

October 24, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Fortinet FortiManager flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the Fortinet FortiManager missing... Read more »

Digital Echo Chambers and Erosion of Trust – Key Threats to the US Elections

October 23, 2024 add comment
Resecurity reports a rise in political content related to the 2024 US elections on social media, with increased activity from foreign sources. Resecurity has detected a substantial increase in... Read more »

U.S. CISA adds Microsoft SharePoint flaw to its Known Exploited Vulnerabilities catalog

October 23, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft SharePoint flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the Microsoft SharePoint Deserialization... Read more »

Crooks are targeting Docker API servers to deploy SRBMiner

October 23, 2024 add comment
Threat actors are targeting Docker remote API servers to deploy SRBMiner crypto miners on compromised instances, Trend Micro warns. Trend Micro researchers observed attackers targeting Docker remote API servers... Read more »

Why DSPM is Essential for Achieving Data Privacy in 2024

October 23, 2024 add comment
Data Security Posture Management (DSPM) helps organizations address evolving data security and privacy requirements by protecting and managing sensitive information. Data Security Posture Management (DSPM) comes into play– an... Read more »

SEC fined 4 companies for misleading disclosures about the impact of the SolarWinds attack

October 23, 2024 add comment
The SEC fined Unisys, Avaya, Check Point, and Mimecast for misleading disclosures about the impact of the SolarWinds Orion hack. The US Securities and Exchange Commission (SEC) charged four... Read more »

Samsung zero-day flaw actively exploited in the wild

October 22, 2024 add comment
Google’s Threat Analysis Group (TAG) researchers warn of a Samsung zero-day vulnerability that is exploited in the wild. Google’s Threat Analysis Group (TAG) warns of a Samsung zero-day vulnerability,... Read more »

Experts warn of a new wave of Bumblebee malware attacks

October 22, 2024 add comment
Experts warn of a new wave of attacks involving the Bumblebee malware, months after Europol’s ‘Operation Endgame‘ that disrupted its operations in May. The Bumblebee malware loader has resurfaced in... Read more »

U.S. CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog

October 22, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the ScienceLogic SL1 flaw... Read more »
Subscribe to our Newsletter