Fortinet Patches Critical RCE Vulnerability in FortiNAC
Fortinet has released patches to address a critical vulnerability in its FortiNAC network access control solution. The zero trust access solution allows organizations to view…
Category: SecurityWeek
CISA Says Critical Zyxel NAS Vulnerability Exploited in Attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) warns that a recently patched critical vulnerability affecting some of the network-attached storage (NAS) products made by…
British Twitter Hacker Sentenced to Prison in US
A British national has been sentenced to five years in prison in the US for his role in hacking schemes targeting cryptocurrency wallets, Twitter accounts,…
Remotely Exploitable DoS Vulnerabilities Patched in BIND
The Internet Systems Consortium (ISC) has released patches for three remotely exploitable denial-of-service (DoS) vulnerabilities in the DNS software suite BIND. Tracked as CVE-2023-2828, CVE-2023-2829…
CISA Tells US Agencies to Patch Exploited Roundcube, VMware Flaws
The US government’s cybersecurity agency CISA on Thursday added another batch of security flaws to its Known Exploited Vulnerabilities (KEV) catalog and urged federal agencies…
NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections
The National Security Agency (NSA) has published technical mitigation guidance to help organizations harden systems against BlackLotus UEFI bootkit infections. The NSA’s recommendations provide a…
In Other News: Microsoft Win32 App Isolation,Tsunami Hits Linux Servers, ChatGPT Credentials Exposed on Dark Web
SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a…
VMware Patches Code Execution Vulnerabilities in vCenter Server
Virtualization giant VMware has published software updates to address multiple memory corruption vulnerabilities in vCenter Server that could lead to remote code execution. A total…
2.5M Genworth Policyholders and 769K Retired California Workers and Beneficiaries Affected by Hack
The country’s largest public pension fund says the personal information of about 769,000 retired California employees and other beneficiaries — including Social Security numbers —…
Google Backs Creation of Cybersecurity Clinics With $20 Million Donation
Free medical clinics and legal aid clinics, where college students and their instructors help their communities while also learning more about their professions, are now…
US Military Personnel Receiving Unsolicited, Suspicious Smartwatches
The U.S. Army’s Criminal Investigation Division is urging military personnel to be on the lookout for unsolicited, suspicious smartwatches in the mail, warning that the…
North Korean Hackers Caught Using Malware With Microphone Wiretapping Capabilities
A hacking group linked to the North Korean government has been caught using new wiretapping malware in recent surveillance attacks, according to an advisory from…