Industry Reactions to EU-US Data Privacy Framework: Feedback Friday
The European Union and the United States this week reached an agreement on the Data Privacy Framework focusing on the secure transfer of information from…
Month: July 2023
TeamTNT’s Cloud Credential Stealing Campaign Now Targets Azure and Google Cloud
Jul 14, 2023THNCyber Threat / Cloud Security A malicious actor has been linked to a cloud credential stealing campaign in June 2023 that’s focused on…
Critical Cisco SD-WAN Vulnerability Leads to Information Leaks
A remotely-exploitable critical vulnerability in the Cisco SD-WAN vManage software could allow unauthenticated attackers to retrieve information from vulnerable instances. Tracked as CVE-2023-20214 (CVSS score…
AIOS WordPress Plugin Faces Backlash for Storing User Passwords in Plain Text
Jul 14, 2023THNPassword Security / WordPress All-In-One Security (AIOS), a WordPress plugin installed on over one million sites, has issued a security update after a…
Hackers Target Reddit Alternative Lemmy via Zero-Day Vulnerability
Several instances of the Reddit alternative Lemmy were hacked in recent days by attackers who had apparently exploited a zero-day vulnerability. Lemmy is an open…
Rockwell Automation ControlLogix Flaws Expose ICS Devices
Rockwell Automation ControlLogix EtherNet/IP (ENIP) communication module models have two security issues that might be utilized to carry out remote code execution and cause a denial…
Meta’s Threads app used as a lure
It was to be expected: As the buzz around Meta’s new microblogging platform Threads gained momentum, some individuals have stepped in to take advantage of…
Join this Webinar on SaaS Security Posture Management
Jul 14, 2023The Hacker NewsSaaS Security / Cybersecurity As security practices continue to evolve, one primary concern persists in the minds of security professionals—the risk…
Akira Ransomware Claims Gerber Childrenswear Data Breach
Akira ransomware group has claimed Gerber Childrenswear data breach, adding a new fashion brand to the list of its victims. Claiming to have gained unauthorized…
Secure Code Warrior Raises $50 Million to Help Developers Write Secure Code
Developer-focused learning platform provider Secure Code Warrior on Thursday announced that it has raised $50 million in Series C funding, which brings the total raised…
Indexing Over 15 Million WordPress Websites with PWNPressSecurity Affairs
Sicuranex’s PWNPress platforms indexed over 15 million WordPress websites, it collects data related to vulnerabilities and misconfigurations Leveraging the extensive Common Crawl dataset and pushing…
Cisco SD-WAN vManage Flaw: Let Attackers Escalate Privileges
A critical severity vulnerability has been detected in the request authentication validation for the REST API of the Cisco SD-WAN vManage software. Cisco released a…