News
-
"Popular Vulnerability Scanners Are Only 73 Percent Accurate"According to new research conducted by Rezilion, the most popular commercial and open-source scanning technologies produce a high level of inaccuracy and noise. Researchers analyzed 20 popular DockerHub containers, ran them locally, and scanned them with…
-
"SlashNext Report Finds Phishing Attacks Have Risen 61% This Year"According to a new report released by the phishing protection company SlashNext, phishing attacks increased significantly in the first six months of 2022 as cybercriminal activity and global issues such as Russia's invasion of Ukraine grew. SlashNext…
-
"LemonDuck Cryptojacking Botnet Targets API Security Gap"According to a recent report, the well-known cryptocurrency mining botnet LemonDuck can secretly mine cryptocurrency on the Linux platform by targeting Docker. LemonDuck mines cryptocurrency, escalates privileges, and moves laterally in compromised…
-
"NM Radiology Practice Health Data Breach Results in PHI Exposure"Radiology Associates of Albuquerque (RAA) Imaging notified an unspecified number of patients about a health data breach involving the exposure of Protected Health Information (PHI). The breach was caused by a cyberattack that was discovered more than a…
-
"Typosquat Campaign Targeting Android, Windows Users Now Counts 600+ Domains"Security researchers at Cyble and Bleeping Computer recently discovered attacks targeting Windows and Android users that mimicked 27 brands across over 200 typosquatting domains. Security researchers at DomainTools are now saying they have…
-
"Google Pays Out Over $50,000 for Vulnerabilities Patched by Chrome 107"Google recently announced the release of Chrome 107 to the stable channel, with patches for 14 vulnerabilities, including high-severity bugs reported by external researchers. A total of ten security bugs were reported externally: three high-…
-
"ICO Warns of "Immature" Biometric Tech"The UK’s data protection regulator has warned organizations using or developing “emotion analysis” technology to act responsibly or risk facing a formal investigation. The Information Commissioner’s Office (ICO) issued a statement recently,…
-
"Ransomware Threat Shifts from US to EMEA and APAC"Security researchers at SonicWall have discovered that the volume of ransomware detections in Q3 2022 was the lowest in two years, but certain geographical regions have become bigger targets as attacks on US organizations wane. The researchers used…
-
"Researchers Uncover Cryptojacking Campaign Targeting Docker, Kubernetes Cloud Servers"CrowdStrike researchers have discovered a new hacking campaign that targets cloud infrastructure worldwide in the service of a cryptojacking scheme. The "Kiss-A-Dog" campaign has been active since at least September, when a CrowdStrike honeypot detected…
-
"BlackBerry Commissioned Research Reveals Four in Five Software Supply Chains Exposed to Cyberattack in the Last 12 Months"BlackBerry announced new research at the 9th annual BlackBerry Security Summit, revealing the scope of software supply chain cybersecurity vulnerabilities in today's organizations. In the last 12 months, four in five (80 percent) IT decision-makers said…
-
"VMware Fixes Critical RCE in VMware Cloud Foundation"VMware has released security updates to address a critical vulnerability in VMware Cloud Foundation, identified as CVE-2021-39144 (CVSSv3 9.8). VMware Cloud Foundation is an advanced hybrid cloud platform as it offers a comprehensive set of software-…
-
"See Tickets Discloses Major Card Data Breach"Global ticketing giant See Tickets has recently begun notifying customers of a significant breach of their personal and financial information, which lasted for over two-and-a-half years. The company, owned by French media firm Vivendi, revealed the…