JQuery Attack Hits NPM, GitHub, Can Extract Web Form Data
A trojanized version of jQuery has been spreading on the npm JavaScript package manager, GitHub and elsewhere, for use in a jQuery attack, security researchers…
Author: Cybernoz
Catch.com.au upgrades web app protections after DDoS attack – Cloud – Security
Wesfarmers-owned Catch.com.au has undergone a web application protection upgrade, partially in response to its first significant distributed denial-of-service attack in 2022. Platform engineering lead Cameron…
31 million email addresses found exposed
A May 2024 data breach disclosed by American luxury retailer and department store chain Neiman Marcus last month has exposed more than 31 million customer…
1.4 GB of NSA Data Leaked Online Including Phone Numbers, Email Addresss
Researchers from Cyber Press, who reported a massive Twitter data leak today, found another data leak online. This time, cybercriminals exposed a file with 1.4 GB of…
Stacks L2 Security Soars with Hypernative’s Ecosystem-Wide Protection
Hypernative integrates with Stacks, Bitcoin’s leading L2, to enhance security for apps and smart contracts. This partnership strengthens the Bitcoin economy by providing real-time threat…
Shopify says stolen customer data was taken in third-party breach
Shopify has denied a breach of its systems after a cybercriminal posted alleged Shopify customer details online. Shopify told BleepingComputer and other publications that the…
Avast releases free decryptor for DoNex ransomware and past variants
Antivirus company Avast have discovered a weakness in the cryptographic scheme of the DoNex ransomware family and released a decryptor so victims can recover their files…
The Full Ticketmaster Breach Story
In a series of unsettling developments, Ticketmaster, the global ticket sales and distribution company, has once again fallen victim to a major cybersecurity breach. This…
AI SPERA Partners with Devcons to Expand ‘Criminal IP’ into Middle Eastern Market
Torrance, United States / California, July 8th, 2024, CyberNewsWire – AI SPERA, a leading Cyber Threat Intelligence (CTI) company, has announced a partnership with UAE-based distributor…
Gov to run “stocktake” of all internet-facing systems and services – Security
The federal government will run a “stocktake” of all its internet-facing systems and services by June next year. A direction [pdf], which was signed by…
Critical Ghostscript flaw exploited in the wild. Patch it now!
Critical Ghostscript flaw exploited in the wild. Patch it now! Pierluigi Paganini July 08, 2024 Threat actors are exploiting Ghostscript vulnerability CVE-2024-29510 to bypass the…
Windows 11 22H2 reaches end of service in October
Microsoft reminded customers today that multiple editions of Windows 11, version 22H2, will reach the end of servicing (EOS) in three months, on October 8,…