A vulnerability in Uber’s email system allows just about anyone to send emails on behalf of Uber. The researcher who discovered this flaw warns this vulnerability can be abused by threat actors to email 57 …
Uber dismisses vulnerability that lets you email anyone as Uber! Read More »
System administrators looking over Microsoft Exchange servers probably haven’t had the most joyous start to their new years. That’s because there has been a massive date processing failure issue as the new value chosen “2.201.010.001” …
Microsoft releases official fix for Y2K22 Exchange Server bug that was causing mail jam Read More »
For many, the New Year was a time to spend with family and friends and a time to form loose and hopeful pacts in the form of New Year’s resolutions. For sysadmins responsible for Exchange …
Gloucester City Council of UK was reportedly hit by a cyber attack on December 20th,2021 disrupting all of its online services such as council tax support, Caravan site information, Licensing, Recycling, Health and Leisure Centers, …
Gloucester City Council hit by a possible Ransomware Cyber Attack Read More »
In 2021, thousands of new cybersecurity incidents have been recorded — and while cryptocurrency theft and data loss are now commonplace, this year stands out due to several high-profile incidents involving ransomware, supply chain attacks, …
The healthcare sector has been the target of hundreds of cyberattacks this year. A tally of public data breach reports so far shows that tens of millions of healthcare records have been exposed to unauthorized …
Top 10 healthcare breaches in the U.S. exposed data of 19 million Read More »
Researchers have found half a dozen high-risk vulnerabilities in the latest firmware version for the Netgear Nighthawk R6700v3 router. At publishing time the flaws remain unpatched. Nighthawk R6700 is a popular dual-bank WiFi router advertised …
Netgear leaves vulnerabilities unpatched in Nighthawk router Read More »
The Have I Been Pwned data breach notification service now lets you check if your email and password are one of 441,000 accounts stolen in an information-stealing campaign using RedLine malware. RedLine is currently the …
Have I Been Pwned adds 441K accounts stolen by RedLine malware Read More »
Iranian Cybersecurity firm Amnpardaz has released a security report stating that HP iLO devices were loaded with a data wiping malware dubbed iLOBleed. Technically speaking, it is actually a malicious software rootkit that is loaded …
Korean researchers have developed a set of attacks against some solid-state drives (SSDs) that could allow planting malware in a location that’s beyond the reach of the user and security solutions. The attack models are …
Firmware attack can drop persistent malware in hidden SSD area Read More »
The Twitter account previously associated with the ANOM chat app is posting frivolous tweets this week. But, is it an account hijack, as some may wonder? Perhaps not. ANOM was a fake encrypted messaging platform created as part …
Twitter account of FBI’s fake chat app, ANOM seen trolling today Read More »
A never-before-seen China-based targeted intrusion adversary dubbed Aquatic Panda has been observed leveraging critical flaws in the Apache Log4j logging library as an access vector to perform various post-exploitation operations, including reconnaissance and credential harvesting …
Chinese APT Hackers Used Log4Shell Exploit to Target Academic Institution Read More »