New ‘Greatness’ service simplifies Microsoft 365 phishing attacks
The Phishing-as-a-Service (PhaaS) platform named ‘Greatness’ has seen a spike in activity as it targets organizations using Microsoft 365 in the United States, Canada, the…
Category: Bleeping Computer
Top 5 Password Cracking Techniques Used by Hackers
One of the biggest security threats is password cracking. Are you an IT system administrator concerned about the security of your organization’s data? In this…
Surprise! Coldplay lyrics hidden in Kingston SSD firmware
What has firmware got to do with pop rock, you ask? That’s the question that crossed a security researcher’s mind as he analyzed Kingston’s firmware and…
Hacker ‘PlugwalkJoe’ pleads guilty to 2020 Twitter breach
Joseph James O’Connor, aka ‘PlugwalkJoke,’ has pleaded guilty to multiple cybercrime offenses, including SIM swapping attacks, cyberstalking, computer hacking, and hijacking high-profile accounts on Twitter…
Microsoft May 2023 Patch Tuesday fixes 3 zero-days, 38 flaws
Today is Microsoft’s May 2023 Patch Tuesday, and security updates fix three zero-day vulnerabilities and a total of 38 flaws. Six vulnerabilities are classified as…
Spanish police dismantle phishing operation linked to crime ring
The National Police of Spain have arrested two hackers, 15 members of a criminal organization, and another 23 people involved in illegal financial operations in…
GitHub now auto-blocks token and API key leaks for all repos
GitHub is now automatically blocking the leak of sensitive information like API keys and access tokens for all public code repositories. Today’s announcement comes after…
Microsoft issues optional fix for Secure Boot zero-day used by malware
Microsoft has released security updates to address a Secure Boot zero-day vulnerability exploited by BlackLotus UEFI malware to infect fully patched Windows systems. Secure Boot…
Food distribution giant Sysco warns of data breach after cyberattack
Sysco, a leading global food distribution company, has confirmed that its network was breached earlier this year by attackers who stole sensitive information, including business,…
Critical Ruckus RCE flaw exploited by new DDoS botnet malware
A new malware botnet named ‘AndoryuBot’ is targeting a critical-severity flaw in the Ruckus Wireless Admin panel to infect unpatched Wi-Fi access points for use…
Windows 11 KB5026372 cumulative update released with 20 changes
Microsoft has released the Windows 11 22H2 KB5026372 cumulative update to fix security vulnerabilities and introduce 20 changes, improvements, and bug fixes. KB5026372 is a mandatory…
Microsoft fixes Secure Boot zero-day used by BlackLotus UEFI malware
Microsoft has released security updates to address a Secure Boot zero-day vulnerability exploited by BlackLotus UEFI malware to infect fully patched Windows systems. Secure Boot…