WhatsApp lawsuit against NSO Group greenlit by Supreme Court
The US Supreme Court essentially gave Meta’s WhatsApp the go ahead to pursue their case against Pegasus’s NSO Group. On Monday, the US Supreme Court denied the…
Month: January 2023
Juniper caught by third-party bugs dating back to 2016 – Security
Juniper Networks has issued three advisories for critical bugs in a mammoth patch release covering more than 30 vulnerabilities. The first critical advisory covers more…
Hackers exploit Control Web Panel flaw to open reverse shells
Hackers are actively exploiting a critical vulnerability patched recently in Control Web Panel (CWP), a tool for managing servers formerly known as CentOS Web Panel.…
Remote code execution vulnerability in FortiOS SSL-VPN, exploited by threat actors to backdoor networks
According to a forensic report published by Fortinet on Wednesday, an unidentified threat actor exploited a key vulnerability in the company’s FortiOS SSL-VPN product in…
Scott Harrell joins Infoblox as CEO
Infoblox has unveiled that Jesper Andersen has decided to retire as CEO and the Board of Directors has appointed Scott Harrell as the new President…
RAT malware campaign tries to evade detection using polyglot files
Operators of the StrRAT and Ratty remote access trojans (RAT) are running a new campaign using polyglot MSI/JAR and CAB/JAR files to evade detection from…
Microsoft tests live kernel memory dumps in Windows 11 Task Manager
Microsoft is testing a new diagnostic tool in Windows 11 that lets you create live kernel memory dumps without disrupting the operation of Windows. A…
Credential Stealing Flaw in Google Chrome Impacted 2.5 Billion Users
The vulnerability (CVE-2022-3656), allowed remote attackers to steal sensitive user data like cloud service provider credentials and crypto wallet details. The cyber security researchers at…
Identity thieves bypass security questions to access Experian credit reports
Identity thieves were aware of a method to access full credit reports at Experian using just your social security number and some basic information. After…
Chrome vulnerability could have led to widespread data theft
Researchers at Imperva have revealed their hand in uncovering and fixing a potentially dangerous vulnerability in Google’s Chrome and Chromium-based browsers that, left untreated, could…
Android TV box on Amazon came pre-installed with malware
A Canadian system administrator discovered that an Android TV box purchased from Amazon was pre-loaded with persistent, sophisticated malware baked into its firmware. The malware…
Healthcare provider issues ransomware alert after 9 months of attack
A healthcare provider from Pennsylvania issued a ransomware alert after 9 months and confirmed that the hackers accessed personal data from its servers and might…