News
-
"Dozens of Vulnerabilities Patched in Intel Products"Intel recently announced patches for dozens of vulnerabilities across its product portfolio, including critical and high-severity issues. The most severe of these flaws is CVE-2021-39296 (CVSS score of 10), which impacts the Integrated Baseboard…
-
"Tonga Is the Latest Pacific Island Nation Hit With Ransomware"A ransomware attack has targeted Tonga's state-owned telecommunications company. Tonga Communications Corporation (TCC), one of the country's two telecommunications companies, announced that the attack could slow down administrative operations. The…
-
"India-Linked Group Used Telegram to Mastermind Cyberattacks Across Asia, Says Analyst"In 2021, SideWinder, also known as Hardcore Nationalist (HN2), targeted more than 60 organizations in Afghanistan, Bhutan, Myanmar, Nepal, and Sri Lanka, according to Group-IB. By a wide margin, government agencies were the most heavily attacked, with 44…
-
"Hyundai, Kia Issue Software Security Fix to Deter TikTok Thefts"Kia and parent company Hyundai confirmed recently that the Korean automakers are releasing new anti-theft software at no cost to vehicle owners. According to the National Highway Traffic Safety Administration (NHTSA), the free software fix applies…
-
"High-Severity DLP Flaw Impacts Trellix for Windows"Trellix, the leading Data Loss Prevention (DLP) vendor, is urging customers to patch a high-severity vulnerability that allows local attackers to circumvent restrictions and exfiltrate sensitive data. The vulnerability, tracked as CVE-2023-0400, affects…
-
"Vulnerabilities Open Korenix JetWave Industrial Networking Devices to Attack"CyberDanube researchers have discovered three vulnerabilities in various Korenix JetWave industrial access points and LTE cellular gateways that could enable attackers to disrupt their operation or use them as a foothold for future attacks. According to…
-
"OT Network Security Myths Busted in a Pair of Hacks"Two recently released studies highlight the hidden dangers to physical operations in today's Operational Technology (OT) networks posed by wireless devices, cloud-based applications, and nested networks of Programmable Logic Controllers (PLCs),…
-
"RedEyes Hackers Use New Malware to Steal Data From Windows, Phones"The APT37 threat group, also known as 'RedEyes' or 'ScarCruft,' targets individuals for intelligence collection using the new evasive malware called M2RAT and steganography. APT37 is a North Korean hacker group suspected to be government-supported. In…
-
"Experts Warn of 'Beep' - A New Evasive Malware That Can Fly Under the Radar"Researchers have discovered a new piece of evasive malware named Beep, which is designed to evade detection and drop additional payloads on a compromised system. Natalie Zargarov, a researcher at Minerva Labs, stated that the creators of this malware…
-
"Preventing Grid Cyberattacks With the Flip of a Switch"Electrical substations are considered the "middle-man" of the power system, but unlike the middle-man targeted for elimination in most corporate transactions, the electrical substation plays a critical role in the route of electricity from the grid to…
-
"Dong Chen Wins NSF CAREER Award for Project on Cybersecurity, Smart Home Device Data"Dong Chen, assistant professor of computer science at Colorado School of Mines, has won a National Science Foundation (NSF) CAREER Award for research aimed at providing smart home device users greater control over their data privacy. Chen will receive $…
-
"Adobe Plugs Critical Security Holes in Illustrator, After Effects Software"Software maker Adobe recently released security fixes for at least a half dozen vulnerabilities that expose Windows and macOS users to malicious cyberattacks. Adobe warned that security problems exist in three of its most popular software products…