Medusa Ransomware Allegedly Claims Comwave Cyberattack
The Medusa ransomware group has allegedly claimed a cyberattack on Comwave, a Canadian communications giant. The ransomware actors listed Comwave as its latest victim after…
Month: May 2024
Incognito Dark Market Admin Arrested for Selling Illegal Goods
Rui-Siang Lin, who is thought to be the mastermind behind the infamous Incognito Market, has been caught. It is said that over $100 million worth…
Grandoreiro Malware Hijacks Outlook Client to Send Phishing Emails
X-Force identified a phishing campaign targeting Latin American users since March 2024, where emails impersonate legitimate entities like tax and utility services, urging recipients to…
The Security Interviews: What is the real cyber threat from China?
On 6 January 2020, when Ciaran Martin announced he was stepping down from the National Cyber Security Centre (NCSC) later in the year, he had…
“Incognito Market” Operator Arrested By U.S. Law Enforcement
The U.S. law enforcement has arrested an alleged operator of “Incognito Market,” a major online dark web narcotics marketplace that facilitated more than $100 million…
Experts released PoC exploit code for RCE in QNAP QTS
Experts released PoC exploit code for RCE in QNAP QTS Pierluigi Paganini May 21, 2024 Experts warn of fifteen vulnerabilities in the QNAP QTS, the…
Community-driven PTaaS vs. Automated Pentesting
Modern pentesting approaches use independent security researchers working under strict NDAs and advanced software platforms to streamline the process. However, with many vendors focusing on…
GitHub Enterprise Server Flaw Allow Bypass Authentication
A critical vulnerability was discovered in the GitHub Enterprise Server that could allow attackers to completely bypass authentication and gain unauthorized access to repositories and…
Critical Memory Corruption In Cloud Logging Infrastructure
Fluent Bit, a widely used open-source data collector and processor, has been found to have a major memory loss flaw. Companies utilizing Fluent Bit in…
NextGen Healthcare Mirth Connect Under Attack
May 21, 2024NewsroomHealthcare / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a security flaw impacting NextGen Healthcare Mirth Connect to…
Secretforums & Breach Nation Lure Ex-BreachForums Members
Secretforums, a data leaks forum, announced that it would bestow former BreachForums members with ranks similar to what they had previously held on the seized…
PoC Exploit Released for QNAP QTS zero-day RCE Flaw
Researchers have shown a proof-of-concept (PoC) attack for a zero-day remote code execution (RCE) flaw in the QTS operating system from QNAP. Users of QNAP’s…