Whitelisting Is Like Having A Bouncer At Your Door
“Guilty until proven innocent,” writes Maxwell Alles in a Forbes article this week. That’s the way he likes to think of one of the most effective elements…
Author: Cybernoz
CVE-2024–45186: Unauthenticated SSTI bug in Filesender exposes MySQL & S3 credentials and other configuration variables, potentially leaking all (sometimes encrypted) user uploaded files. Dutch Universities affected. | by Jonathan Bouman | Oct, 2024
FileSender is an open-source web application designed for securely transferring large files. The idea for FileSender was born in 2007 during a task-force meeting of…
BianLian ransomware claims attack on Boston Children’s Health Physicians
The BianLian ransomware group has claimed the cyberattack on Boston Children’s Health Physicians (BCHP) and threatens to leak stolen files unless a ransom is paid.…
Hacking Laptop With a BBQ Lighter to Gain Root Access
A simple BBQ lighter has been used to exploit vulnerabilities in laptops, gaining root access through an innovative method known as electromagnetic fault injection (EMFI).…
Fake Google Meet Alerts Install Malware on Windows, macOS
Protect yourself from the ClickFix attack! Learn how cybercriminals are using fake Google Meet pages to trick users into downloading malware. Discover the latest tactics…
What are tensor processing units and what is their role in AI?
There are central processing units (CPUs), graphics processing units (GPUs) and even data processing units (DPUs) – all of which are well-known and commonplace now.…
Hackers blackmail Globe Life after stealing customer data
Insurance giant Globe Life says an unknown threat actor attempted to extort money in exchange for not publishing data stolen from the company’s systems earlier…
macOS Gatekeeper Security Feature Bypassed to Execute Malicious Code
Security researchers at Palo Alto Networks’ Unit 42 have uncovered significant vulnerabilities in macOS’s Gatekeeper security mechanism. This discovery reveals how certain third-party applications and…
Sudanese Brothers Arrested in ‘AnonSudan’ Takedown – Krebs on Security
The U.S. government on Wednesday announced the arrest and charging of two Sudanese brothers accused of running Anonymous Sudan (a.k.a. AnonSudan), a cybercrime business known…
Researchers Uncover Cicada3301 Ransomware Operations and Its Affiliate Program
Oct 17, 2024Ravie LakshmananRansomware / Network Security Cybersecurity researchers have gleaned additional insights into a nascent ransomware-as-a-service (RaaS) called Cicada3301 after successfully gaining access to…
Critical GitHub Vulnerability Advisory: Act Now For Security
GitHub has released a critical security advisory highlighting vulnerabilities that merit immediate action from users of GitHub Enterprise Server (GHES). The advisory focuses on a…
Authorities take down Gang Behind ATM Attacks
Dutch, French, and German police forces arrested three members of a notorious criminal network responsible for a series of violent attacks on ATMs across Europe.…