Chinese national charged for hacking thousands of Sophos firewalls
Chinese national charged for hacking thousands of Sophos firewalls Pierluigi Paganini December 11, 2024 The U.S. has charged a Chinese national for hacking thousands of…
Author: Cybernoz
Chinese Hacker Charged for Hacking 81,000+ Firewalls Worldwide
The cybersecurity firm Sichuan Silence and one of its employees, Guan Tianfeng, have been sanctioned by the Department of the Treasury’s Office of Foreign Assets…
Ivanti CSA Vulnerabilities Let Attackers Gain Admin Access
Ivanti has issued critical software updates to address several severe vulnerabilities in its Cloud Services Application (CSA). These vulnerabilities tracked as CVE-2024-11639, CVE-2024-11772, and CVE-2024-11773,…
New DCOM Attack Exploits Windows Installer for Backdoor Access
SUMMARY The new DCOM attack leverages Windows Installer service for stealthy backdoor deployment. Attack exploits the IMsiServer interface for remote code execution and persistence. Malicious…
Microsoft Office & Excel Vulnerabilities Expose Systems To RCE & Privilege Escalation
Microsoft disclosed two significant vulnerabilities affecting its Office and Excel products as part of its December Patch Tuesday updates. These vulnerabilities tracked as CVE-2024-49059 and…
Windows Remote Desktop Services Vulnerability Let Attackers Execute Remote Code
On December 10, 2024, Microsoft disclosed a critical vulnerability in its Windows Remote Desktop Services, tracked as CVE-2024-49115. This security flaw allows attackers to execute…
Cato Networks extends SASE-based protection to IoT/OT environments
With the introduction of Cato IoT/OT Security, Cato Networks is enabling enterprises to simplify the management and security of Internet of Things (IoT) and operational…
LDAP Clinet Vulnerability Let Attackers Gain Vulnerable System Access Remotely
A newly disclosed critical vulnerability, identified as CVE-2024-49124, has been classified as a Remote Code Execution (RCE) flaw with a severity rating of Critical by…
Trellix Drive Encryption enhances security against insider attacks
Trellix announced Trellix Drive Encryption upgrades for on-premises and SaaS management. Customers benefit from the flexibility needed for encryption protection deployment to safeguard their data…
Post Office scandal in 2024 – part 1: A year in the mainstream
This year saw a scandal in the making for over 20 years finally arrive in the public consciousness in January, where it has remained ever…
Hackers Exploiting HTML Functions to Bypass Email Security Filters
Cybercriminals increasingly leverage sophisticated HTML techniques to circumvent email security filters, putting users and organizations at greater risk of falling victim to phishing attacks. These…
Apple iPhone Users Warned About Data-Stealing Vulnerability in TCC Feature
Apple iPhone users are being alerted to a critical security flaw that could potentially allow hackers to steal sensitive data. This vulnerability exists within the…