HPE Aruba Networking fixes four critical RCE flaws in ArubaOS
HPE Aruba Networking has issued its April 2024 security advisory detailing critical remote code execution (RCE) vulnerabilities impacting multiple versions...
Read more →Category: Bleeping Computer
US govt warns of pro-Russian hacktivists targeting water facilities
The US government is warning that pro-Russian hacktivists are seeking out and hacking into unsecured operational technology (OT) systems used...
Read more →
Panda Restaurants discloses data breach after corporate systems hack
Image: Coolcaesar (CC BY-SA 4.0) Panda Restaurant Group, the parent company of Panda Express, Panda Inn, and Hibachi-San, disclosed a...
Read more →
French hospital CHC-SV refuses to pay LockBit extortion demand
The Hôpital de Cannes – Simone Veil (CHC-SV) in France announced it received a ransom demand from the Lockbit 3.0 ransomware...
Read more →
CISA says GitLab account takeover bug is actively exploited in attacks
CISA warned today that attackers are actively exploiting a maximum-severity GitLab vulnerability that allows them to take over accounts via...
Read more →
April Windows Server updates cause NTLM auth failures
Microsoft has confirmed customer reports of NTLM authentication failures and high load after installing last month’s Windows Server security updates....
Read more →
New Cuttlefish malware infects routers to monitor traffic for credentials
A new malware named ‘Cuttlefish’ has been spotted infecting enterprise-grade and small office/home office (SOHO) routers to monitor data that...
Read more →
Microsoft says April Windows updates break VPN connections
Microsoft has confirmed that the April 2024 Windows security updates break VPN connections across client and server platforms. The company...
Read more →
Qantas app exposed sensitive traveler details to random users
Qantas Airways confirms that some of its customers were impacted by a misconfiguration in its app that exposed sensitive information and boarding passes to...
Read more →
New Latrodectus malware attacks use Microsoft, Cloudflare themes
Latrodectus malware is now being distributed in phishing campaigns using Microsoft Azure and Cloudflare lures to appear legitimate while making...
Read more →
Data of over 25,000 people stolen in 2023 breach
Daily newspaper Philadelphia Inquirer revealed that attackers behind a May 2023 security breach have stolen the personal and financial information...
Read more →
Google now pays up to $450,000 for RCE bugs in some Android apps
Google has increased rewards for reporting remote code execution vulnerabilities within select Android apps by ten times, from $30,000 to...
Read more →