Netgear warns users to patch auth bypass, XSS router flaws
Image: MidjourneyNetgear warned customers to update their devices to the latest available firmware, which patches stored cross-site scripting (XSS) and...
Read more →Category: Bleeping Computer
DNS hijacks target crypto platforms registered with Squarespace
A wave of coordinated DNS hijacking attacks targets decentralized finance (DeFi) cryptocurrency domains using the Squarespace registrar, redirecting visitors to phishing...
Read more →
Rite Aid confirms data breach after June ransomware attack
Pharmacy giant Rite Aid confirmed a data breach after suffering a cyberattack in June, which was claimed by the RansomHub...
Read more →
Critical Exim bug bypasses security filters on 1.5 million mail servers
Censys warns that over 1.5 million Exim mail transfer agent (MTA) instances are unpatched against a critical vulnerability that lets...
Read more →
ARRL finally confirms ransomware gang stole data in cyberattack
Image: MidjourneyThe American Radio Relay League (ARRL) finally confirmed that some of its employees’ data was stolen in a May...
Read more →
Signal downplays encryption key flaw, fixes it after X drama
Signal is finally tightening its desktop client’s security by changing how it stores plain text encryption keys for the data...
Read more →
Google increases bug bounty rewards five times, up to $151K
Google has announced a fivefold increase in payouts for bugs found in its systems and applications reported through its Vulnerability...
Read more →
Data of 200,000 exposed in 2023 ransomware attack
Dallas County is notifying over 200,000 people that the Play ransomware attack, which occurred in October 2023, exposed their personal...
Read more →
CRYSTALRAY hacker expands to 1,500 breached systems using SSH-Snake tool
Image: Midjourney A new threat actor known as CRYSTALRAY has significantly broadened its targeting scope with new tactics and exploits,...
Read more →
Advance Auto Parts data breach impacts 2.3 million people
Advance Auto Parts is sending data breach notifications to over 2.3 million people whose personal data was stolen in recent...
Read more →
Microsoft 365, Office users hit by wave of ‘30088-27’ update errors
Over the last month, Microsoft 365 and Microsoft Office users have been experiencing “30088-27” errors when attempting to update the application....
Read more →
Ticket Heist fraud gang uses 700 domains to sell fake Olympics tickets
A large-scale fraud campaign with over 700 domain names is likely targeting Russian-speaking users looking to purchase tickets for the...
Read more →