FISA – A Catalyst for Europe’s Cybersecurity Sovereignty
The recent two-year extension of Section 702 of the Foreign Intelligence Surveillance Act (FISA) represents a significant escalation in global cybersecurity tensions, particularly in Europe.…
Author: Cybernoz
VMware fixes critical vCenter Server RCE bug – again! (CVE-2024-38812)
Broadcom has released new patches for previously fixed vulnerabilities (CVE-2024-38812, CVE-2024-38813) in vCenter Server, one of which hasn’t been fully addressed the first time and…
A Comprehensive Guide to Finding Service Accounts in Active Directory
Oct 22, 2024Ravie LakshmananIdentity Management / Security Automation Service accounts are vital in any enterprise, running automated processes like managing applications or scripts. However, without…
Hackers Exploiting Exposed Docker Remote API Servers With perfctl Malware
Cybercriminals are increasingly targeting exposed Docker Remote API servers to deploy the perfctl malware, posing significant threats to organizations relying on containerized environments. These attacks…
Fastly DDoS Protection blocks malicious traffic
Fastly released Fastly DDoS Protection to provide automatic protection from Layer 7 and other application-level DDoS attacks. With a click of a button, organizations can…
Bumblebee and Latrodectus Malware Return with Sophisticated Phishing Strategies
Oct 22, 2024Ravie LakshmananMalware / Threat Intelligence Two malware families that suffered setbacks in the aftermath of a coordinated law enforcement operation called Endgame have…
Roundcube XSS flaw exploited to steal credentials, email (CVE-2024-37383)
Attackers have exploited an XSS vulnerability (CVE-2024-37383) in the Roundcube Webmail client to target a governmental organization of a CIS country, Positive Technologies (PT) analysts…
Labour’s 10-year health service plan will open up data sharing
As part of its 10-Year Health Plan, the government has unveiled what it calls ambitious plans to shift the NHS from analogue to digital. It…
U.S. CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 22, 2024 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds ScienceLogic…
Ivanti Neurons for App Control strengthens endpoint security
Ivanti introduced Ivanti Neurons for App Control, which safeguards devices from unauthorized applications. In addition, Ivanti released new analytics in the Ivanti Neurons platform and…
Critical Flaw In ScienceLogic SL1
U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog-CVE-2024-9537. This vulnerability affects ScienceLogic SL1 (formerly known…
VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812
VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812 Pierluigi Paganini October 22, 2024 VMware addressed a remote code execution flaw, demonstrated in a…