Sony Breached Via MOVEit Zero-Day Vulnerability
Sony Interactive Entertainment (SIE) discloses a cybersecurity breach caused by the exploitation of a zero-day vulnerability in Progress Software’s MOVEit Transfer platform. Nearly 6791 current and…
Month: October 2023
Linux Vulnerability Attacks Root Privileges
A buffer overflow issue has been disclosed in the GNU C Library’s dynamic loader ld.so, which might allow local attackers to acquire root privileges on…
McLaren Ransomware Attack Confirmed, Investigation In Progress
Days after ALPHV/BlackCat ransomware group claimed responsibility for infiltrating the systems of McLaren Health Care Corporation, the company officially acknowledged falling victim to the ransomware…
Malicious npm Package from a Twin Developers Deliver r77 Rootkit
A malicious supply chain attack affecting the popular npm platform, often used for Node.js projects, has been identified. This attack employs a tactic known as…
Hackers are Abusing Dropbox to steal Microsoft SharePoint login
A growing cyber threat involving Dropbox has emerged, and it’s raising concerns across the cybersecurity landscape. In the initial two weeks of September, a staggering…
Service Disruption & Data Breach
The Lyca Mobile Services has confirmed a data breach attack on its systems. The international mobile virtual network operator (MVNO) based in the UK has…
Sony Data Breach Confirmed Via MOVEit Vulnerability
After days of speculations regarding a potential data breach at Sony, the global entertainment industry leader, Sony Interactive Entertainment, has now officially confirmed a major…
Sony sent data breach notifications to about 6,800 individuals
Sony sent data breach notifications to about 6,800 individuals Pierluigi Paganini October 05, 2023 Sony Interactive Entertainment has notified current and former employees and their family…
Microsoft Teams, Edge Zero-Days Vulnerabilities Leads to RCE
Microsoft has addressed two zero-day vulnerabilities in two Open-Source Software security vulnerabilities, which include Microsoft Edge, Microsoft Teams for Desktop, Skype for Desktop, and Webp…
Hackers Hijacking Microsoft SQL Server to Compromise Cloud
Hackers frequently target Microsoft SQL servers because of their extensive use and possible weaknesses. These servers are a top target for hackers looking to make…
Exploitation of Critical WS_FTP Server Flaw Spotted in the Wild
As previously reported, Progress-owned WS_FTP was discovered with multiple vulnerabilities associated with cross-site scripting (XSS), SQL injection, cross-site request forgery, unauthenticated user enumeration, and a…
TA505 Hacker’s Sneaky RMS Tool Phishing Campaign Detected
In a new cybersecurity threat, the notorious TA505 hacker group has been seen employing a cunning phishing campaign. The campaign uses a Remote Management System…