Group-IB CEO Ilya Sachkov sentenced to 14 years in a strict prison colonySecurity Affairs
Ilya Sachkov, CEO and co-founder of Group-IB was sentenced to 14 years in a high security prison colony according to the Moscow court announcement. As…
Category: Securityaffairs
Two flaws in Linux Ubuntu affect 40% of Ubuntu usersSecurity Affairs
Wiz researchers discovered two Linux vulnerabilities in the Ubuntu kernel that can allow an unprivileged local user to gain elevated privileges. Wiz Research discovered two…
Two ambulance services in UK lost access to patient records after a cyber attack on software providerSecurity Affairs
Swedish software firm Ortivus suffered a cyberattack that has resulted in at least two British ambulance services losing access to electronic patient records. Two British…
FraudGPT, a new malicious generative AI tool appears in the threat landscapeSecurity Affairs
FraudGPT is another cybercrime generative artificial intelligence (AI) tool that is advertised in the hacking underground. Generative AI models are becoming attractive for crooks, Netenrich…
CISA adds Ivanti EPMM flaw to its Known Exploited Vulnerabilities catalogSecurity Affairs
US CISA added actively exploited Ivanti ‘s Endpoint Manager Mobile (EPMM) vulnerability to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA)…
Over 500K MikroTik RouterOS systems potentially exposed to hacking due to critical flawSecurity Affairs
Experts warn of a severe privilege escalation, tracked as CVE-2023-30799, in MikroTik RouterOS that can be exploited to hack vulnerable devices. VulnCheck researchers warn of a…
Atlassian addressed 3 flaws in Confluence and Bamboo productsSecurity Affairs
Atlassian addressed three vulnerabilities in its Confluence Server, Data Center, and Bamboo Data Center products that can lead to remote code execution. Atlassian has addressed three critical and…
VMware addressed an information disclosure flaw in VMware Tanzu Application Service for VMs and Isolation SegmentSecurity Affairs
VMware fixed an information disclosure flaw in VMware Tanzu Application Service for VMs and Isolation Segment that exposed CF API admin credentials in audit logs.…
Apple fixed new actively exploited CVE-2023-38606 zero-daySecurity Affairs
Apple released security updates to address an actively exploited zero-day flaw in iOS, iPadOS, macOS, tvOS, watchOS, and Safari. Apple released urgent security updates to address multiple…
Twelve Norwegian ministries hacked using a zero-day vulnerabilitySecurity Affairs
Threat actors exploited a zero-day flaw in third-party software in attacks against the ICT platform used by 12 Norwegian ministries. The ICT platform used by…
A flaw in OpenSSH forwarded ssh-agent allows remote code executionSecurity Affairs
A new flaw in OpenSSH could be potentially exploited to run arbitrary commands remotely on compromised hosts under specific conditions. Researchers from the Qualys Threat…
Experts warn of OSS supply chain attacks on the banking sectorSecurity Affairs
Checkmark researchers have uncovered the first known targeted OSS supply chain attacks against the banking sector. In the first half of 2023, Checkmarx researchers detected multiple…