Mysterious Kill Switch Disrupts the Notorious Mozi IoT Botnet
As of August 2023, one of the most notorious IoT Botnets called “Mozi” vanished from their activities. Mozi Botnet had been exploiting hundreds of thousands…
Category: CyberSecurityNews
5000+ Employees Personal Information Exposed
The US-based software firm Okta has disclosed a data breach caused by a third-party vendor, Rightway Healthcare, Inc., which exposed the personal information of around 5,000…
3,000+ Apache ActiveMQ Servers Vulnerable to RCE Attacks
More than 3,000 Apache ActiveMQ servers exposed to the internet are at risk due to a critical remote code execution (RCE) vulnerability identified as CVE-2023-46604. The most widely…
Remote Desktop Manager Flaw Let Attacker Execute Remote Code
Recent reports indicate that the Remote Desktop Manager and Devolutions Server have been affected by improper access control and Remote code execution vulnerabilities. The CVEs…
Best Practices and Proven Strategies
Protecting cloud-based apps and the data they manage is the primary goal of Software as a Service (SaaS) security. With the growing popularity of software…
Cisco Meeting Server Flaw Let Attacker Trigger a DoS Attack
Cisco has warned about a serious security issue in the Web Bridge feature of the Cisco Meeting Server. The flaw (CVE-2023-20255) could let someone who is…
Fix for 15 security Flaws
Google has released Chrome 119 to the stable channel for Windows, Mac, and Linux, along with 15 security patches. Version 119.0.6045.105 for Linux and macOS…
Next Generation CVSS v4.0 Vulnerability Scoring System Released
FIRST, the Forum of Incident Response and Security Teams has recently unveiled the latest version of their Common Vulnerability Scoring System (CVSS). The new CVSS…
Boeing Admits Cyberattack; Lockbit Claims Zero-Day Exploit
Boeing, the aerospace industry leader, has recently reported a cyberattack on its systems. The attack primarily targeted the company’s parts and distribution business. While this…
Iranian Group Utilize IIS-based Backdoors Compromise Windows
A new threat actor who is found to be associated with Iran’s Ministry of Intelligence and Security (MOIS) IIS has been discovered to be conducting…
VMware Workspace Flaw Let Attacker Redirect to Malicious Source
An open redirect vulnerability in the VMware Workspace ONE UEM console has been identified as CVE-2023-20886, which has a CVSS score of 8.8 and is classified…
Kubernetes Security Flaw Let Attacks Escalate Admin Privileges
A new privilege escalation vulnerability has been discovered in Kubernetes, which allows threat actors to gain administrative privileges on affected pods. The CVE for this…