Open redirect flaws increasingly exploited by phishers
Phishing attacks using open redirect flaws are on the rise again, according to Kroll’s Cyber Threat Intelligence (CTI) team, which means organizations should consider refreshing…
Month: August 2023
Innovative UK SMEs spend half of turnover on tech
UK small and medium-sized enterprises (SMEs) are investing nearly half of their annual turnover on technology to counteract rising costs and retain competitiveness, according to…
The Stockwell Harris Law Data Breach Claimed By Lockbit
The notorious Lockbit ransomware group has claimed the Stockwell Harris Law data breach. Stockwell Harris Law is a prominent legal firm specializing in California’s Workers’…
Google Chrome Security Update – Vulnerabilities Patched
In a security update for Chrome, Google has updated the Stable and Extended stable channels to 116.0.5845.110 for Mac and Linux and 116.0.5845.110/.111 for Windows. Over…
Apache XML Graphics Batik Flaw Exposes Sensitive Information
Two Server-Side Request Forgery (SSRF) vulnerabilities were found in Apache Batik, which could allow a threat actor to access sensitive information in Apache Batik. These…
Security Onion 2.4: Free, open platform for defenders gets huge update
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It has been downloaded over 2 million times…
Spacecolon Toolset Fuels Global Surge in Scarab Ransomware Attacks
Aug 23, 2023THNRansomware / Malware A malicious toolset dubbed Spacecolon is being deployed as part of an ongoing campaign to spread variants of the Scarab…
XLoader malware Attacking macOS OfficeNote App
XLoader has been serving as a particularly persistent and adaptable threat since 2015. With its roots deeply ingrained in the digital landscape, XLoader has undergone a…
Five processes every organisation needs for successful BizDevOps
BizDevOps in a nutshell Many organisations claim to be data-centric and data-driven. Making informed decisions based on what their organisation’s data is telling them. But…
Cameyo offers Windows apps delivery on Chrome devices
Cameyo has integrated its virtual app delivery services with ChromeOS to provide IT departments with a way to repurpose older Windows devices. Cameyo said that ChromeOS…
CBA cuts 221 roles in technology business division – Finance – Training & Development
The Commonwealth Bank of Australia has made 221 roles redundant, resulting in 88 job losses and an effort to “redeploy as many [of those affected]…
XXE-scape through the front door: circumventing the firewall with HTTP request smuggling
In this write-up, I want to share a cool way in which I was able to bypass firewall limitations that were stopping me from successfully…