Hackers Stolen 300,000 Users Personal Data in Cyber Attack at Car Rental Firm
Avis Car Rental disclosed that hackers had stolen personal data from approximately 300,000 customers. The breach, which occurred between August 3 and August 6, 2024,…
Category: CyberSecurityNews
Hackers Exploiting GeoServer RCE Vulnerability to Deploy Malware
GeoServer is an open-source server for sharing geospatial data, and this open-source software server is written in Java. It publishes data from any major spatial…
Beware Of Malicious Chrome Extension That Delivers Weaponized ZIP Archive
Malicious Chrome extensions pose significant risks to users, as they can compromise personal information, inject unwanted promotions, and even manipulate web traffic as well. There…
Kibana Vulnerabilities Let Attackers Execute Arbitrary Code
Elastic has disclosed two critical vulnerabilities affecting Kibana, the popular data visualization and exploration tool used with Elasticsearch. These vulnerabilities, CVE-2024-37288 and CVE-2024-37285, allow attackers…
Fog Ransomware Group Attacking Employees of Financial Services Sector
The Fog, a ransomware variant belonging to the STOP/DJVU family that was formerly targeting educational and recreational SECTORS, has turned its attention towards profitable targets…
Bitcoin ATMs Now Become as a Playground for Scammers
Bitcoin ATMs (BTMs) have emerged as a convenient tool for cryptocurrency transactions, but they have also become a hotbed for scams. With their increasing presence…
IBM webMethods Vulnerabilites Let Attackers Execute Arbitrary Commands
IBM has disclosed multiple critical vulnerabilities in its webMethods Integration Server, potentially allowing attackers to execute arbitrary commands on affected systems. These vulnerabilities, identified in…
Veeam Software Vulnerabilities Let Attackers Trigger Remote Code Execution
Veeam Software, a leading backup, recovery, and data management solutions provider, has announced the discovery and remedy of several critical and high-severity vulnerabilities across multiple…
What is ACK Piggybacking?-Definition, Attack Types & Prevention
Piggybacking is a term relevant to computer networking and cybersecurity. It describes techniques that aim to optimize data transmission and, conversely, unauthorized access to networks.…
PoC Exploit Released for Linux Kernel Vulnerability that Allows Root Access
Google Released a Proof-of-Concept (PoC) for a critical security vulnerability, identified as CVE-2024-26581, which has been discovered in the Linux kernel and poses significant risks…
Linux Pluggable Authentication Modules Abused to Create Backdoors
The Group-IB Digital Forensics and Incident Response (DFIR) team has uncovered a novel technique that exploits Linux’s Pluggable Authentication Modules (PAM) to create persistent backdoors…
SonicWall Warns of Access Control Vulnerability Exploited in the Wild
SonicWall has issued an urgent security advisory regarding a critical vulnerability (CVE-2024-40766) affecting its firewall products. The company warns that this improper access control flaw…