Category: Bleeping Computer

Krispy Kreme
11
Dec
2024

Krispy Kreme cyberattack impacts online orders and operations

US doughnut chain Krispy Kreme suffered a cyberattack in November that impacted portions of its business operations, including placing online…

Share: X : Krispy Kreme cyberattack impacts online orders and operationsFacebook : Krispy Kreme cyberattack impacts online orders and operationsLinkedin : Krispy Kreme cyberattack impacts online orders and operationsReddit : Krispy Kreme cyberattack impacts online orders and operationsTelegram : Krispy Kreme cyberattack impacts online orders and operationsWhatsApp : Krispy Kreme cyberattack impacts online orders and operationsEmail : Krispy Kreme cyberattack impacts online orders and operations
Ron Wyden
11
Dec
2024

Wyden proposes bill to secure US telecoms after Salt Typhoon hacks

U.S. Senator Ron Wyden of Oregon announced a new bill to secure the networks of American telecommunications companies breached by…

Share: X : Wyden proposes bill to secure US telecoms after Salt Typhoon hacksFacebook : Wyden proposes bill to secure US telecoms after Salt Typhoon hacksLinkedin : Wyden proposes bill to secure US telecoms after Salt Typhoon hacksReddit : Wyden proposes bill to secure US telecoms after Salt Typhoon hacksTelegram : Wyden proposes bill to secure US telecoms after Salt Typhoon hacksWhatsApp : Wyden proposes bill to secure US telecoms after Salt Typhoon hacksEmail : Wyden proposes bill to secure US telecoms after Salt Typhoon hacks
Windows 11
11
Dec
2024

Windows 11 KB5048667 & KB5048685 cumulative updates released

Microsoft has released the Windows 11 KB5048667 and KB5048685 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues. Both…

Share: X : Windows 11 KB5048667 & KB5048685 cumulative updates releasedFacebook : Windows 11 KB5048667 & KB5048685 cumulative updates releasedLinkedin : Windows 11 KB5048667 & KB5048685 cumulative updates releasedReddit : Windows 11 KB5048667 & KB5048685 cumulative updates releasedTelegram : Windows 11 KB5048667 & KB5048685 cumulative updates releasedWhatsApp : Windows 11 KB5048667 & KB5048685 cumulative updates releasedEmail : Windows 11 KB5048667 & KB5048685 cumulative updates released
Ivanti
10
Dec
2024

Ivanti warns of maximum severity CSA auth bypass vulnerability

Today, Ivanti warned customers about a new maximum-severity authentication bypass vulnerability in its Cloud Services Appliance (CSA) solution. The security…

Share: X : Ivanti warns of maximum severity CSA auth bypass vulnerabilityFacebook : Ivanti warns of maximum severity CSA auth bypass vulnerabilityLinkedin : Ivanti warns of maximum severity CSA auth bypass vulnerabilityReddit : Ivanti warns of maximum severity CSA auth bypass vulnerabilityTelegram : Ivanti warns of maximum severity CSA auth bypass vulnerabilityWhatsApp : Ivanti warns of maximum severity CSA auth bypass vulnerabilityEmail : Ivanti warns of maximum severity CSA auth bypass vulnerability
WordPress
10
Dec
2024

WPForms bug allows Stripe refunds on millions of WordPress sites

A vulnerability in WPForms, a WordPress plugin used in over 6 million websites, could allow subscriber-level users to issue arbitrary…

Share: X : WPForms bug allows Stripe refunds on millions of WordPress sitesFacebook : WPForms bug allows Stripe refunds on millions of WordPress sitesLinkedin : WPForms bug allows Stripe refunds on millions of WordPress sitesReddit : WPForms bug allows Stripe refunds on millions of WordPress sitesTelegram : WPForms bug allows Stripe refunds on millions of WordPress sitesWhatsApp : WPForms bug allows Stripe refunds on millions of WordPress sitesEmail : WPForms bug allows Stripe refunds on millions of WordPress sites
Patch Tuesday
10
Dec
2024

Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws

Tag CVE ID CVE Title Severity GitHub CVE-2024-49063 Microsoft/Muzic Remote Code Execution Vulnerability Important Microsoft Defender for Endpoint CVE-2024-49057 Microsoft…

Share: X : Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flawsFacebook : Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flawsLinkedin : Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flawsReddit : Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flawsTelegram : Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flawsWhatsApp : Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flawsEmail : Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws
Windows 10
10
Dec
2024

Windows 10 KB5048652 update fixes new motherboard activation bug

Microsoft has released the KB5048652 cumulative update for Windows 10 22H2, which contains six fixes, including a fix that prevented…

Share: X : Windows 10 KB5048652 update fixes new motherboard activation bugFacebook : Windows 10 KB5048652 update fixes new motherboard activation bugLinkedin : Windows 10 KB5048652 update fixes new motherboard activation bugReddit : Windows 10 KB5048652 update fixes new motherboard activation bugTelegram : Windows 10 KB5048652 update fixes new motherboard activation bugWhatsApp : Windows 10 KB5048652 update fixes new motherboard activation bugEmail : Windows 10 KB5048652 update fixes new motherboard activation bug
Fortnite
10
Dec
2024

FTC distributes $72 million in Fortnite refunds from Epic Games

The Federal Trade Commission (FTC) is distributing over $72 million in Epic Game Fortnite refunds for the company’s use of dark…

Share: X : FTC distributes $72 million in Fortnite refunds from Epic GamesFacebook : FTC distributes $72 million in Fortnite refunds from Epic GamesLinkedin : FTC distributes $72 million in Fortnite refunds from Epic GamesReddit : FTC distributes $72 million in Fortnite refunds from Epic GamesTelegram : FTC distributes $72 million in Fortnite refunds from Epic GamesWhatsApp : FTC distributes $72 million in Fortnite refunds from Epic GamesEmail : FTC distributes $72 million in Fortnite refunds from Epic Games
Red panda
10
Dec
2024

US sanctions Chinese firm for hacking firewalls in ransomware attacks

The U.S. Treasury Department has sanctioned Chinese cybersecurity company Sichuan Silence and one of its employees for their involvement in…

Share: X : US sanctions Chinese firm for hacking firewalls in ransomware attacksFacebook : US sanctions Chinese firm for hacking firewalls in ransomware attacksLinkedin : US sanctions Chinese firm for hacking firewalls in ransomware attacksReddit : US sanctions Chinese firm for hacking firewalls in ransomware attacksTelegram : US sanctions Chinese firm for hacking firewalls in ransomware attacksWhatsApp : US sanctions Chinese firm for hacking firewalls in ransomware attacksEmail : US sanctions Chinese firm for hacking firewalls in ransomware attacks
Phishing header
10
Dec
2024

Uncovering an advanced phishing attack

This article is written by Varonis Security Specialist Tom Barnea. Think about your most recent security awareness training concerning phishing…

Share: X : Uncovering an advanced phishing attackFacebook : Uncovering an advanced phishing attackLinkedin : Uncovering an advanced phishing attackReddit : Uncovering an advanced phishing attackTelegram : Uncovering an advanced phishing attackWhatsApp : Uncovering an advanced phishing attackEmail : Uncovering an advanced phishing attack
Hacker looking at a box
10
Dec
2024

New Cleo zero-day RCE flaw exploited in data theft attacks

Hackers are actively exploiting a zero-day vulnerability in Cleo managed file transfer software to breach corporate networks and conduct data…

Share: X : New Cleo zero-day RCE flaw exploited in data theft attacksFacebook : New Cleo zero-day RCE flaw exploited in data theft attacksLinkedin : New Cleo zero-day RCE flaw exploited in data theft attacksReddit : New Cleo zero-day RCE flaw exploited in data theft attacksTelegram : New Cleo zero-day RCE flaw exploited in data theft attacksWhatsApp : New Cleo zero-day RCE flaw exploited in data theft attacksEmail : New Cleo zero-day RCE flaw exploited in data theft attacks
VSCode
10
Dec
2024

Chinese hackers use Visual Studio Code tunnels for remote access

Chinese hackers targeting large IT service providers in Southern Europe were seen abusing Visual Studio Code (VSCode) tunnels to maintain…

Share: X : Chinese hackers use Visual Studio Code tunnels for remote accessFacebook : Chinese hackers use Visual Studio Code tunnels for remote accessLinkedin : Chinese hackers use Visual Studio Code tunnels for remote accessReddit : Chinese hackers use Visual Studio Code tunnels for remote accessTelegram : Chinese hackers use Visual Studio Code tunnels for remote accessWhatsApp : Chinese hackers use Visual Studio Code tunnels for remote accessEmail : Chinese hackers use Visual Studio Code tunnels for remote access