Internet Security

Iran-linked actors target critical infrastructure organizations

October 18, 2024 add comment
U.S. and allies warn of attacks from Iran-linked actors targeting critical infrastructure through brute-force attacks in a year-long campaign. Intelligence and cybersecurity agencies from the U.S., Australia, and Canada,... Read more »

macOS HM Surf flaw in TCC allows bypass Safari privacy settings

October 18, 2024 add comment
Microsoft disclosed a flaw in the macOS Apple’s Transparency, Consent, and Control (TCC) framework that could allow it to bypass privacy settings and access user data. Microsoft discovered a... Read more »

Two Sudanese nationals indicted for operating the Anonymous Sudan group

October 18, 2024 add comment
The DoJ charged Anonymous Sudan members and disrupted their DDoS infrastructure, halting its cyber operations. The US Justice Department charged two Sudanese brothers (Ahmed Salah Yousif Omer, 22, and... Read more »

Russia-linked RomCom group targeted Ukrainian government agencies since late 2023

October 17, 2024 add comment
Russia-linked threat actor RomCom targeted Ukrainian government agencies and Polish entities in cyber attacks since late 2023. Cisco Talos researchers observed Russia-linked threat actor RomCom (aka UAT-5647, Storm-0978, Tropical... Read more »

A critical flaw in Kubernetes Image Builder could allow attackers to gain root access

October 17, 2024 add comment
A critical flaw in Kubernetes Image Builder could allow attackers to gain root access if exploited under specific conditions. A critical, Kubernetes Image Builder vulnerability, tracked as CVE-2024-9486 (CVSS score: 9.8),... Read more »

VMware fixes high-severity SQL injection flaw CVE-2024-38814 in HCX

October 17, 2024 add comment
VMware fixes a high-severity SQL injection flaw in HCX allowing non-admin users to remotely execute code on the HCX manager. VMWare warns to address a remote code execution vulnerability,... Read more »

Brazil’s Polícia Federal arrested the notorious hacker USDoD

October 16, 2024 add comment
Brazil’s Polícia Federal has arrested hacker USDoD, the hacker behind the National Public Data and InfraGard breaches. Brazil’s Polícia Federal (PF) announced the arrest in Belo Horizonte/MG of the... Read more »

Finnish Customs dismantled the dark web drugs market Sipulitie

October 16, 2024 add comment
Finnish Customs shut down the Tor darknet marketplace Sipulitie and seized the servers hosting the platform. Finnish Customs, with the help of Europol, Swedish and Polish law enforcement authorities... Read more »

U.S. CISA adds Microsoft Windows Kernel, Mozilla Firefox and SolarWinds Web Help Desk bugs to its Known Exploited Vulnerabilities catalog

October 16, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Windows Kernel, Mozilla Firefox and SolarWinds Web Help Desk bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security... Read more »

GitHub addressed a critical vulnerability in Enterprise Server

October 16, 2024 add comment
GitHub addressed a critical vulnerability in Enterprise Server that could allow unauthorized access to affected instances. Code hosting platform GitHub addressed a critical vulnerability, tracked as CVE-2024-9487 (CVSS score of 9.5),... Read more »
Subscribe to our Newsletter