Category: Bleeping Computer

Toyota sign
31
May
2023

Toyota finds more misconfigured servers leaking customer info

Toyota Motor Corporation has discovered two additional misconfigured cloud services that leaked car owners’ personal information for over seven years….

Wordpress
30
May
2023

WordPress force installs critical Jetpack patch on 5 million sites

Automattic, the company behind the open-source WordPress content management system, has started force installing a security patch on millions of…

WordPress
30
May
2023

WordPress plugin ‘Gravity Forms’ vulnerable to PHP object injection

The premium WordPress plugin ‘Gravity Forms,’ currently used by over 930,000 websites, is vulnerable to unauthenticated PHP Object Injection. Gravity…

Barracuda
30
May
2023

Barracuda zero-day abused since 2022 to drop new malware, steal data

Image: Bing Image Creator Network and email security firm Barracuda today revealed that a recently patched zero-day vulnerability had been…

Apple
30
May
2023

Microsoft finds macOS bug that lets hackers bypass SIP root restrictions

Apple has recently addressed a vulnerability that lets attackers with root privileges bypass System Integrity Protection (SIP) to install “undeletable”…

Hacker
30
May
2023

RomCom malware spread via Google Ads for ChatGPT, GIMP, more

A new campaign distributing the RomCom backdoor malware is impersonating the websites of well-known or fictional software, tricking users into…

Microsoft Surface laptops
30
May
2023

Microsoft shares fix for cameras not working on Surface laptops

Microsoft has shared a temporary fix for a widespread issue triggered by a buggy driver that causes built-in cameras on…

Android
30
May
2023

Android apps with spyware installed 421 million times from Google Play

A new Android malware distributed as an advertisement SDK has been discovered in multiple apps, many previously on Google Play…

RaidForums
30
May
2023

New hacking forum leaks data of 478,000 RaidForums members

A database for the notorious RaidForums hacking forums has been leaked online, allowing threat actors and security researchers insight into…

Flash loan attack on Jimbos Protocol steals over $7.5 million
29
May
2023

Flash loan attack on Jimbos Protocol steals over $7.5 million

Jimbos Protocol, an Arbitrum-based DeFi project, has suffered a flash loan attack that resulted in the loss of more than…

Dentist
29
May
2023

MCNA Dental data breach impacts 8.9 million people after ransomware attack

Managed Care of North America (MCNA) Dental has published a data breach notification on its website, informing almost 9 million…

North Korea
29
May
2023

Lazarus hackers target Windows IIS web servers for initial access

The notorious North Korean state-backed hackers, known as the Lazarus Group, are now targeting vulnerable Windows Internet Information Services (IIS)…