‘Looney Tunables’ Glibc Vulnerability Exploited in Cloud Attacks
A serious privilege escalation vulnerability patched recently in the GNU C Library (glibc) has been exploited in cloud attacks by...
Read more →Category: SecurityWeek
US Sanctions Russian National for Helping Ransomware Groups Launder Money
The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) on Friday announced sanctions against Ekaterina Zhdanova, a...
Read more →
Iranian APT Targets Israeli Education, Tech Sectors With New Wipers
Since January 2023, an Iranian advanced persistent threat (APT) actor has been targeting higher education and technology organizations in Israel...
Read more →
Exploitation of Critical Confluence Vulnerability Begins
The first in-the-wild exploitation attempts targeting a recent vulnerability in Atlassian Confluence Data Center and Confluence Server were observed over...
Read more →
A Cyber Breach Delays Poll Worker Training in Mississippi’s Largest County Before the Statewide Vote
Election officials in Mississippi’s most populous county had to scramble to complete required poll worker training after an early September...
Read more →
Microsoft Says Exchange ‘Zero Days’ Disclosed by ZDI Already Patched or Not Urgent
Microsoft says four Exchange vulnerabilities disclosed by Trend Micro’s Zero Day Initiative (ZDI) last week have either already been patched...
Read more →
In Other News: Airport Taxi Hacking, Post-Quantum Crypto Guidance, Stanford Breach
SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under...
Read more →
Okta Hack Blamed on Employee Using Personal Google Account on Company Laptop
Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account...
Read more →
Mortgage Giant Mr. Cooper Shuts Down Systems Following Cyberattack
Mortgage giant Mr. Cooper on Thursday announced that it has shut down certain systems after falling victim to a cyberattack,...
Read more →
North Korean Hackers Use New ‘KandyKorn’ macOS Malware in Attacks
The notorious North Korean hacking group Lazarus has used new macOS and Windows malware in recent attacks, security researchers warn....
Read more →
Apache ActiveMQ Vulnerability Exploited as Zero-Day
Malicious exploitation of an Apache ActiveMQ vulnerability tracked as CVE-2023-46604 started at least two weeks prior to patches being released,...
Read more →
Cyberattack Disrupts Ace Hardware’s Operations
American hardware retailers’ cooperative Ace Hardware is experiencing operation disruptions after a cyberattack crippled most of its key IT systems....
Read more →