Technology New Windows Server 2012 zero-day gets free, unofficial patches Nov 29, 2024 bleepingcomputer.com Free unofficial security patches have been released through the 0patch platform to address a zero-day vulnerability introduced over two years…
Cyber Security Ransomware Gangs Seek Pen Testers to Boost Quality Nov 29, 2024 darkreading.com Qualified applicants must be able to test ransomware encryption and find bugs that might enable defenders to jailbreak the malware.
Technology Hackers abuse popular Godot game engine to infect thousands of PCs Nov 27, 2024 bleepingcomputer.com Hackers have used new GodLoader malware exploiting the capabilities of the widely used Godot game engine to evade detection and…
Technology Hackers exploit ProjectSend flaw to backdoor exposed servers Nov 27, 2024 bleepingcomputer.com Threat actors are using public exploits for a critical authentication bypass flaw in ProjectSend to upload webshells and gain remote…
Cyber Security Russian Script Kiddie Assembles Massive DDoS Botnet Nov 27, 2024 darkreading.com Over the past year, "Matrix" has used publicly available malware tools and exploit scripts to target weakly secured IoT devices…
Cyber Security Hacker in Snowflake Extortions May Be a U.S. Soldier Nov 26, 2024 krebsonsecurity.com Two men have been arrested for allegedly stealing data from and extorting dozens of companies that used the cloud data…
Technology New NachoVPN attack uses rogue VPN servers to install malicious updates Nov 26, 2024 bleepingcomputer.com A set of vulnerabilities dubbed "NachoVPN" allows rogue VPN servers to install malicious updates when unpatched Palo Alto and SonicWall…
Cyber Security ‘RomCom’ APT Mounts Zero-Day, Zero-Click Browser Escapes in Firefox, Tor Nov 26, 2024 darkreading.com The innocuously named Russian-sponsored cyber threat actor has combined critical and serious vulnerabilities in Windows and Firefox products in a…
Cyber Security Geico, Travelers Fined $11.3M for Lax Data Security Nov 26, 2024 darkreading.com New York state regulators punish insurers after cybercriminals illegally access customer info they then used to file scam unemployment claims…
Technology QNAP addresses critical flaws across NAS, router software Nov 25, 2024 bleepingcomputer.com QNAP has released security bulletins over the weekend, which address multiple vulnerabilities, including three critical severity flaws that users should…
New Windows Server 2012 zero-day gets free, unofficial patches
Free unofficial security patches have been released through the 0patch platform to address a zero-day vulnerability introduced over two years…
Ransomware Gangs Seek Pen Testers to Boost Quality
Qualified applicants must be able to test ransomware encryption and find bugs that might enable defenders to jailbreak the malware.
Hackers abuse popular Godot game engine to infect thousands of PCs
Hackers have used new GodLoader malware exploiting the capabilities of the widely used Godot game engine to evade detection and…
Hackers exploit ProjectSend flaw to backdoor exposed servers
Threat actors are using public exploits for a critical authentication bypass flaw in ProjectSend to upload webshells and gain remote…
Russian Script Kiddie Assembles Massive DDoS Botnet
Over the past year, "Matrix" has used publicly available malware tools and exploit scripts to target weakly secured IoT devices…
Hacker in Snowflake Extortions May Be a U.S. Soldier
Two men have been arrested for allegedly stealing data from and extorting dozens of companies that used the cloud data…
New NachoVPN attack uses rogue VPN servers to install malicious updates
A set of vulnerabilities dubbed "NachoVPN" allows rogue VPN servers to install malicious updates when unpatched Palo Alto and SonicWall…
‘RomCom’ APT Mounts Zero-Day, Zero-Click Browser Escapes in Firefox, Tor
The innocuously named Russian-sponsored cyber threat actor has combined critical and serious vulnerabilities in Windows and Firefox products in a…
Geico, Travelers Fined $11.3M for Lax Data Security
New York state regulators punish insurers after cybercriminals illegally access customer info they then used to file scam unemployment claims…
QNAP addresses critical flaws across NAS, router software
QNAP has released security bulletins over the weekend, which address multiple vulnerabilities, including three critical severity flaws that users should…