Category: Securityaffairs

Bangladesh government website leaked data of millions of citizensSecurity Affairs
27
Jul
2023

DepositFiles exposed config file, jeopardizing user securitySecurity Affairs

DepositFiles, a popular web hosting service, left its environment configuration file accessible, revealing a trove of highly sensitive credentials. The…

Group-IB CEO Ilya Sachkov sentenced to 14 years in a strict prison colonySecurity Affairs
27
Jul
2023

Group-IB CEO Ilya Sachkov sentenced to 14 years in a strict prison colonySecurity Affairs

Ilya Sachkov, CEO and co-founder of Group-IB was sentenced to 14 years in a high security prison colony according to…

Two flaws in Linux Ubuntu affect 40% of Ubuntu usersSecurity Affairs
27
Jul
2023

Two flaws in Linux Ubuntu affect 40% of Ubuntu usersSecurity Affairs

Wiz researchers discovered two Linux vulnerabilities in the Ubuntu kernel that can allow an unprivileged local user to gain elevated…

Two ambulance services in UK lost access to patient records after a cyber attack on software providerSecurity Affairs
26
Jul
2023

Two ambulance services in UK lost access to patient records after a cyber attack on software providerSecurity Affairs

Swedish software firm Ortivus suffered a cyberattack that has resulted in at least two British ambulance services losing access to…

FraudGPT, a new malicious generative AI tool appears in the threat landscapeSecurity Affairs
26
Jul
2023

FraudGPT, a new malicious generative AI tool appears in the threat landscapeSecurity Affairs

FraudGPT is another cybercrime generative artificial intelligence (AI) tool that is advertised in the hacking underground. Generative AI models are…

CISA adds recently disclosed Apple flaws to its Known Exploited Vulnerabilities catalogSecurity Affairs
26
Jul
2023

CISA adds Ivanti EPMM flaw to its Known Exploited Vulnerabilities catalogSecurity Affairs

US CISA added actively exploited Ivanti ‘s Endpoint Manager Mobile (EPMM) vulnerability to its Known Exploited Vulnerabilities catalog. US Cybersecurity…

Over 500K MikroTik RouterOS systems potentially exposed to hacking due to critical flawSecurity Affairs
26
Jul
2023

Over 500K MikroTik RouterOS systems potentially exposed to hacking due to critical flawSecurity Affairs

Experts warn of a severe privilege escalation, tracked as CVE-2023-30799, in MikroTik RouterOS that can be exploited to hack vulnerable devices….

Atlassian addressed 3 flaws in Confluence and Bamboo productsSecurity Affairs
25
Jul
2023

Atlassian addressed 3 flaws in Confluence and Bamboo productsSecurity Affairs

Atlassian addressed three vulnerabilities in its Confluence Server, Data Center, and Bamboo Data Center products that can lead to remote code…

VMware fixed five memory corruption issues in vCenter ServerSecurity Affairs
25
Jul
2023

VMware addressed an information disclosure flaw in VMware Tanzu Application Service for VMs and Isolation SegmentSecurity Affairs

VMware fixed an information disclosure flaw in VMware Tanzu Application Service for VMs and Isolation Segment that exposed CF API…

Apple fixed actively exploited zero-day flaws in iOS,macOS,& SafariSecurity Affairs
25
Jul
2023

Apple fixed new actively exploited CVE-2023-38606 zero-daySecurity Affairs

Apple released security updates to address an actively exploited zero-day flaw in iOS, iPadOS, macOS, tvOS, watchOS, and Safari. Apple released…

Twelve Norwegian ministries hacked using a zero-day vulnerabilitySecurity Affairs
25
Jul
2023

Twelve Norwegian ministries hacked using a zero-day vulnerabilitySecurity Affairs

Threat actors exploited a zero-day flaw in third-party software in attacks against the ICT platform used by 12 Norwegian ministries….

A flaw in OpenSSH forwarded ssh-agent allows remote code executionSecurity Affairs
24
Jul
2023

A flaw in OpenSSH forwarded ssh-agent allows remote code executionSecurity Affairs

A new flaw in OpenSSH could be potentially exploited to run arbitrary commands remotely on compromised hosts under specific conditions….