Cornwall-based charity launches diverse career programme
Tech Cornwall has created a careers programme focused on encouraging people from diverse backgrounds into a technology career, regardless of their current career or employment…
Month: December 2024
Hackers Allegedly Claims Breach of EazyDiner Reservation Platform
A prominent restaurant reservation platform, EazyDiner has reportedly fallen victim to a significant data breach. Hackers claim to have accessed and leaked sensitive customer information,…
NachoVPN Tool Exploits Flaws in Popular VPN Clients for System Compromise
Dec 03, 2024Ravie LakshmananEndpoint Security / Vulnerability Cybersecurity researchers have disclosed a set of flaws impacting Palo Alto Networks and SonicWall virtual private network (VPN)…
VMware ‘shock’ spawned lock-in rebellion, says NetApp
Customer tolerance to supplier lock-in is exhausted due to the “shock” that came from changes in VMware licensing. That’s the verdict from NetApp, which announced…
Salesforce Applications Vulnerability Let Attackers Takeover The Accounts
A recent penetration test conducted on Salesforce Communities revealed critical vulnerabilities that could allow attackers to take over user accounts. The security assessment, performed on…
US government, energy sector contractor hit by ransomware
ENGlobal, a Texas-based engineering and automation contractor for companies in the energy sector, has had its data encrypted by attackers. “On November 25, 2024, ENGlobal…
Poland probes Pegasus spyware abuse under the PiS government
Poland probes Pegasus spyware abuse under the PiS government Pierluigi Paganini December 03, 2024 Poland probes Pegasus spyware abuse under the PiS government; ex-security chief…
Apple Employee Suing Company For Monitoring Employee Personal Devices
A current Apple employee has filed a lawsuit against the Apple, accusing the company of invasive surveillance practices that extend into workers’ personal lives. The…
North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks
Dec 03, 2024Ravie LakshmananThreat Intelligence / Email Security The North Korea-aligned threat actor known as Kimsuky has been linked to a series of phishing attacks…
CERT-In Alerts About Critical Drupal Vulnerabilities
The Indian Computer Emergency Response Team (CERT-In) issued a Vulnerability Note CIVN-2024-0353 highlighting several critical vulnerabilities within the widely used content management system (CMS), Drupal.…
TP-Link Archer Zero-Day Vulnerability Let Attackers Inject Malicious Commands
A critical zero-day vulnerability has been discovered in TP-Link Archer, Deco, and Tapo series routers, potentially allowing attackers to inject malicious commands and fully compromise…
Salesforce Applications Vulnerability Could Allow Full Account Takeover
A critical vulnerability has been discovered in Salesforce applications that could potentially allow a full account takeover. The vulnerability, uncovered during a penetration testing exercise,…