North Korean State-Sponsored Hackers Suspected in JumpCloud Supply Chain Attack
Jul 20, 2023THNCyber Attack / Supply Chain An analysis of the indicators of compromise (IoCs) associated with the JumpCloud hack has uncovered evidence pointing to…
Latest Cybersecurity News — Page 5188
View all →
Apache OpenMeetings Web Conferencing Tool Exposed to Critical Vulnerabilities
Jul 20, 2023THNVulnerability / Software Security Multiple security flaws have been disclosed in Apache OpenMeetings, a web conferencing solution, that could be potentially exploited by…
NYPD Body Cam Data Shows the Scale of Violence Against Protesters
Beaten, blinded by pepper spray, corralled like animals, and indiscriminately arrested for marching against police violence and racial injustice. Such was the fate hundreds of…
Critical Flaws in AMI MegaRAC BMC Software Expose Servers to Remote Attacks
Jul 20, 2023THNHardware Security / SysAdmin Two more security flaws have been disclosed in AMI MegaRAC Baseboard Management Controller (BMC) software that, if successfully exploited,…
Wallarm at Black Hat USA 2023 Booth #3131
Wallarm is excited to be back at Black Hat USA this year and meet with our friends in the community wanting (or perhaps needing) to…
Adobe fixes patch bypass for exploited ColdFusion CVE-2023-29298 flaw
Adobe released an emergency ColdFusion security update that fixes critical vulnerabilities, including a fix for a new zero-day exploited in attacks. As part of today’s…
Mallox Ransomware Exploits Weak MS-SQL Servers to Breach Networks
Jul 20, 2023THNEndpoint Security / Data Safety Mallox ransomware activities in 2023 have witnessed a 174% increase when compared to the previous year, new findings…
New Ransomware With RAT Capabilities Impersonating Sophos
A Rust-based file-encrypting ransomware was found this week to be impersonating the cybersecurity firm Sophos as part of its operation. Dubbed ‘SophosEncrypt’, the malware is…
Threat Actors are Targeting Your Web Applications – Here’s How To Protect Them
Web applications remain a prime target for cyberattacks, posing significant risks to businesses and their bottom lines. So much so, in fact, that a staggering…
New AMI BMC Flaws Allowing Takeover and Physical Damage Could Impact Millions of Devices
Firmware and hardware security company Eclypsium has disclosed information on two new vulnerabilities found by its researchers in the American Megatrends (AMI) MegaRAC Baseboard Management…
ALPHV/BlackCat and Clop gangs claim to have hacked cosmetics giant Estée LauderSecurity Affairs
The American cosmetics giant company Estée Lauder was hacked by two distinct ransomware groups, the ALPHV/BlackCat and Clop gangs. Yesterday the cybersecurity expert @sonoclaudio first…
Critical AMI MegaRAC bugs can let hackers brick vulnerable servers
Image: Bing Image Creator Two new critical severity vulnerabilities have been discovered in the MegaRAC Baseboard Management Controller (BMC) software made by hardware and software…