Technology Blue Yonder SaaS giant breached by Termite ransomware gang Dec 6, 2024 bleepingcomputer.com The Termite ransomware gang has officially claimed responsibility for the November breach of software as a service (SaaS) provider Blue…
Cyber Security ‘Bootkitty’ First Bootloader to Take Aim at Linux Dec 2, 2024 darkreading.com Though it's still just a proof of concept, the malware is functional and can evade the Secure Boot process on…
Technology BootKitty UEFI malware exploits LogoFAIL to infect Linux systems Dec 2, 2024 bleepingcomputer.com The recently uncovered 'Bootkitty' UEFI bootkit, the first malware of its kind targeting Linux systems, exploits CVE-2023-40238, aka 'LogoFAIL,' to…
Technology Amazon confirms employee data breach after vendor hack Nov 11, 2024 bleepingcomputer.com Amazon confirmed a data breach involving employee information after data allegedly stolen during the May 2023 MOVEit attacks was leaked…
Technology New Eucleak attack lets threat actors clone YubiKey FIDO keys Sep 4, 2024 bleepingcomputer.com A new "EUCLEAK" flaw found in FIDO devices using the Infineon SLE78 security microcontroller, like Yubico's YubiKey 5 Series, allows attackers…
Cyber Security Millions of Devices Vulnerable to ‘PKFail’ Secure Boot Bypass Issue Jul 26, 2024 darkreading.com Several vendors for consumer and enterprise PCs share a compromised crypto key that should never have been on the devices…
Technology Phoenix UEFI vulnerability impacts hundreds of Intel PC models Jun 20, 2024 bleepingcomputer.com A newly discovered vulnerability in Phoenix SecureCore UEFI firmware tracked as CVE-2024-0762 impacts devices running numerous Intel CPUs, with Lenovo…
Technology Intel and Lenovo servers impacted by 6-year-old BMC flaw Apr 11, 2024 bleepingcomputer.com An almost 6-year-old vulnerability in the Lighttpd web server used in Baseboard Management Controllers has been overlooked by many device…
Technology Exploit released for Android local elevation flaw impacting 7 OEMs Jan 31, 2024 bleepingcomputer.com A proof-of-concept (PoC) exploit for a local privilege elevation flaw impacting at least seven Android original equipment manufacturers (OEMs) is…
Technology New 5Ghoul attack impacts 5G phones with Qualcomm, MediaTek chips Dec 8, 2023 bleepingcomputer.com A new set of vulnerabilities in 5G modems by Qualcomm and MediaTek, collectively called "5Ghoul," impact 710 5G smartphone models…
Blue Yonder SaaS giant breached by Termite ransomware gang
The Termite ransomware gang has officially claimed responsibility for the November breach of software as a service (SaaS) provider Blue…
‘Bootkitty’ First Bootloader to Take Aim at Linux
Though it's still just a proof of concept, the malware is functional and can evade the Secure Boot process on…
BootKitty UEFI malware exploits LogoFAIL to infect Linux systems
The recently uncovered 'Bootkitty' UEFI bootkit, the first malware of its kind targeting Linux systems, exploits CVE-2023-40238, aka 'LogoFAIL,' to…
Amazon confirms employee data breach after vendor hack
Amazon confirmed a data breach involving employee information after data allegedly stolen during the May 2023 MOVEit attacks was leaked…
New Eucleak attack lets threat actors clone YubiKey FIDO keys
A new "EUCLEAK" flaw found in FIDO devices using the Infineon SLE78 security microcontroller, like Yubico's YubiKey 5 Series, allows attackers…
Millions of Devices Vulnerable to ‘PKFail’ Secure Boot Bypass Issue
Several vendors for consumer and enterprise PCs share a compromised crypto key that should never have been on the devices…
Phoenix UEFI vulnerability impacts hundreds of Intel PC models
A newly discovered vulnerability in Phoenix SecureCore UEFI firmware tracked as CVE-2024-0762 impacts devices running numerous Intel CPUs, with Lenovo…
Intel and Lenovo servers impacted by 6-year-old BMC flaw
An almost 6-year-old vulnerability in the Lighttpd web server used in Baseboard Management Controllers has been overlooked by many device…
Exploit released for Android local elevation flaw impacting 7 OEMs
A proof-of-concept (PoC) exploit for a local privilege elevation flaw impacting at least seven Android original equipment manufacturers (OEMs) is…
New 5Ghoul attack impacts 5G phones with Qualcomm, MediaTek chips
A new set of vulnerabilities in 5G modems by Qualcomm and MediaTek, collectively called "5Ghoul," impact 710 5G smartphone models…