Category: Securityaffairs

CISA adds recently disclosed Apple flaws to its Known Exploited Vulnerabilities catalogSecurity Affairs
10
Aug
2023

CISA discovered a new backdoor, named Whirlpool, used in Barracuda ESG attacksSecurity Affairs

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) observed a new backdoor, named Whirlpool, in attacks on Barracuda ESG appliances….

US Govt launches Artificial Intelligence Cyber ChallengeSecurity Affairs
10
Aug
2023

US Govt launches Artificial Intelligence Cyber ChallengeSecurity Affairs

The US Government House this week launched an Artificial Intelligence Cyber Challenge competition for creating a new generation of AI…

CISA adds recently disclosed Apple flaws to its Known Exploited Vulnerabilities catalogSecurity Affairs
10
Aug
2023

CISA adds actively exploited flaw in .NET, Visual Studio to its Known Exploited Vulnerabilities catalogSecurity Affairs

US CISA added zero-day vulnerability CVE-2023-38180 affecting .NET and Visual Studio to its Known Exploited Vulnerabilities catalog. US Cybersecurity and…

Data of all serving police officers Police Service of Northern Ireland (PSNI) mistakenly published onlineSecurity Affairs
10
Aug
2023

Data of all serving police officers Police Service of Northern Ireland (PSNI) mistakenly published onlineSecurity Affairs

Police Service of Northern Ireland (PSNI) mistakenly shared sensitive data of all 10,000 serving police officers in response to a…

Experts discovered a previously undocumented initial access vector used by P2PInfect wormSecurity Affairs
09
Aug
2023

Balada Injector still at large – new domains discoveredSecurity Affairs

The Balada Injector is still at large and still evading security software by utilizing new domain names and using new…

EvilProxy used in massive cloud account takeover schemeSecurity Affairs
09
Aug
2023

EvilProxy used in massive cloud account takeover schemeSecurity Affairs

Cloud account takeover scheme utilizing EvilProxy hit over 100 top-level executives of global organizations EvilProxy was observed sending 120,000 phishing…

Downfall Intel CPU side-channel attack exposes sensitive dataSecurity Affairs
09
Aug
2023

Downfall Intel CPU side-channel attack exposes sensitive dataSecurity Affairs

Google researcher Daniel Moghimi devised a new side-channel attack technique, named Downfall, against Intel CPU. Google researcher Daniel Moghimi devised…

LockBit threatens to leak medical data of cancer patients stolen from Varian Medical SystemsSecurity Affairs
09
Aug
2023

LockBit threatens to leak medical data of cancer patients stolen from Varian Medical SystemsSecurity Affairs

The LockBit ransomware group threatens to leak medical data of cancer patients stolen from Varian Medical Systems. The LockBit ransomware…

Microsoft Patch Tuesday for June 2023 fixes 6 critical flawsSecurity Affairs
08
Aug
2023

Microsoft Patch Tuesday for August 2023 fixed 2 actively exploited flaws

Microsoft Patch Tuesday security updates for August 2023 addressed 74 vulnerabilities, including two actively exploited flaws. Microsoft Patch Tuesday security…

Apple could opt to stop iMessage and FaceTime services due to the government's surveillance demandsSecurity Affairs
08
Aug
2023

UK Electoral Commission discloses a data breachSecurity Affairs

The UK Electoral Commission suffered a data breach that exposed voters’ personal information between 2014 and 2022. The UK Electoral…

43 Android apps in Google Play with 2.5M installs loaded ads when a phone screen was offSecurity Affairs
08
Aug
2023

43 Android apps in Google Play with 2.5M installs loaded ads when a phone screen was offSecurity Affairs

Experts found 43 Android apps in Google Play with 2.5 million installs that displayed advertisements while a phone’s screen was…

Zoom trains its AI model with some user data, without giving them an opt-out optionSecurity Affairs
07
Aug
2023

Zoom trains its AI model with some user data, without giving them an opt-out optionSecurity Affairs

Zoom changed its terms of service requiring users to allow AI to train on all their data without giving them…