Category: Bleeping Computer

New UEFI Secure Boot flaw exposes systems to bootkits, patch now
16
Jan
2025

New UEFI Secure Boot flaw exposes systems to bootkits, patch now

A new UEFI Secure Boot bypass vulnerability tracked as CVE-2024-7344 that affects a Microsoft-signed application could be exploited to deploy bootkits…

Fortinet
16
Jan
2025

Hackers leak configs and VPN credentials for 15,000 FortiGate devices

A new hacking group has leaked the configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices for…

SAP fixes critical vulnerabilities in NetWeaver application servers
16
Jan
2025

SAP fixes critical vulnerabilities in NetWeaver application servers

SAP has fixed two critical vulnerabilities affecting NetWeaver web application server that could be exploited to escalate privileges and access…

CISA
16
Jan
2025

CISA shares guidance for Microsoft expanded logging capabilities

​CISA shared guidance for government agencies and enterprises on using expanded cloud logs in their Microsoft 365 tenants as part…

MikroTik botnet uses misconfigured SPF DNS records to spread malware
15
Jan
2025

MikroTik botnet uses misconfigured SPF DNS records to spread malware

A newly discovered botnet of 13,000 MikroTik devices uses a misconfiguration in domain name server records to bypass email protections and…

Avery labels
15
Jan
2025

Label giant Avery says website hacked to steal credit cards

Avery Products Corporation is warning it suffered a data breach after its website was hacked to steal customers’ credit cards…

Google Ads
15
Jan
2025

Hackers use Google Search ads to steal Google Ads accounts

​Ironically, cybercriminals now use Google search advertisements to promote phishing sites that steal advertisers’ credentials for the Google Ads platform….

Linux
15
Jan
2025

Over 660,000 Rsync servers exposed to code execution attacks

Over 660,000 exposed Rsync servers are potentially vulnerable to six new vulnerabilities, including a critical-severity heap-buffer overflow flaw that allows…

Office
15
Jan
2025

Microsoft ends support for Office apps on Windows 10 in October

Microsoft says it will drop support for Office apps in Windows 10 after the operating system reaches its end of…

FBI
15
Jan
2025

FBI deletes Chinese PlugX malware from thousands of US computers

​The U.S. Department of Justice announced today that the FBI has deleted Chinese PlugX malware from over 4,200 computers in…

Windows BitLocker
15
Jan
2025

Windows BitLocker bug triggers warnings on devices with TPMs

​Microsoft is investigating a bug triggering security alerts on systems with a Trusted Platform Module (TPM) processor after enabling BitLocker….

Allstate car insurer sued for tracking drivers without permission
15
Jan
2025

Allstate car insurer sued for tracking drivers without permission

Texas Attorney General Ken Paxton has filed a lawsuit against Allstate and its data subsidiary Arity for unlawfully collecting, using,…