IT expert who helped expose Post Office scandal offers to investigate second controversial system
The forensic IT expert who proved the Post Office’s Horizon software was error- and bug-ridden said he will carry out a similar examination of the…
Month: April 2024
Poisoned Google Ads Targeting Infra Teams
Security researchers uncovered a sophisticated malvertising campaign targeting IT professionals, particularly those in security and network administration roles. The threat actor behind this attack has…
What is Encryption in Malware?
Malware commonly encrypts its traffic (stolen data sent to a command-and-control server) and internal strings (like URLs and configurations) to prevent security systems from recognizing…
Cisco IOS SNMP Implementation Flaw Trigger Remote Attacks
In a recent security advisory, Cisco disclosed a significant vulnerability in the implementation of the Simple Network Management Protocol (SNMP) IPv4 access control list (ACL)…
Cisco warns of a command injection escalation flaw in its IMC
Cisco warns of a command injection escalation flaw in its IMC. PoC publicly available Pierluigi Paganini April 18, 2024 Cisco has addressed a high-severity vulnerability…
Armis Acquires AI-based Vulnerability Detection Firm Silk Security
Armis, a leading cybersecurity company, has acquired Silk Security, an AI-powered vulnerability detection firm. The acquisition comes when organizations grapple with a surge of security…
6 Phone Management Tips When Traveling Abroad
Phones are a major reason why travelling is more accepted and comfortable than ever before. First of all, you have your device on you, which…
Unfazed by Yet Another Critical Firewall Vulnerability (CVE-2024-3400)
In the wake of the recent disclosure of a critical vulnerability (CVE-2024-3400) affecting a leading firewall solution, Xiid Corporation reminds organizations that Xiid SealedTunnel customers…
Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes
Apr 18, 2024NewsroomContainer Security / Cryptocurrency Threat actors are actively exploiting critical vulnerabilities in OpenMetadata to gain unauthorized access to Kubernetes workloads and leverage them…
Microsoft and Google are top companies to scam users
Online users are increasingly becoming targets of phishing attacks, with hackers exploiting the names of leading technology companies to lure unsuspecting victims into scams that…
Cheap ransomware for sale on dark web marketplaces is changing the way hackers operate
Since June 2023, Sophos X-Ops has discovered 19 junk gun ransomware variants — cheap, independently produced, and crudely constructed — on the dark web. The…
Malicious Google Ads Pushing Fake IP Scanner Software with Hidden Backdoor
Apr 18, 2024NewsroomMalvertising / Endpoint Security A new Google malvertising campaign is leveraging a cluster of domains mimicking a legitimate IP scanner software to deliver…