News
-
"HPE Says Russian Government Hackers Had Access to Emails for 6 Months"In a recent SEC filing, Hewlett Packard Enterprise (HPE) revealed that its cloud email environment was targeted by hackers believed to be sponsored by the Russian government.
-
"Firefox 122 Patches 15 Vulnerabilities"Mozilla recently announced security updates for both Firefox and Thunderbird to patch 15 vulnerabilities, including five rated "high severity." The first high-severity flaw is an out-of-bounds write in ANGLE (Almost Native Graphics Layer Engine), the o
-
"Offshore Wind Farms Are Vulnerable to Cyberattacks, New Concordia Study Shows"A team of researchers from Concordia and Hydro-Quebec conducted a study on the risks of cyberattacks faced by offshore wind farms.
-
"Lassonde Researcher Examining Privacy Concerns in Virtual Reality Environment"Some Virtual Reality (VR) technologies pose significant privacy risks by improperly collecting and sharing users' data.
-
"UAH Leads NATO Program Partners in Project to Address Impact of Quantum Technology on Global Security"Researchers at the University of Alabama in Huntsville (UAH) are leading a NATO collaboration to address emerging security challenges posed by quantum technologies.
-
"5,379 Gitlab Servers Vulnerable to Zero-Click Account Takeover Attacks"Thousands of GitLab servers are vulnerable to zero-click Account Takeover (ATO) attacks involving the exploitation of a critical vulnerability.
-
"SEC Blames SIM Swap Hack for Twitter Account Hijack"The US Securities and Exchange Commission (SEC) confirmed that a SIM swapping hack resulted in its X (Twitter) account getting hijacked.
-
"Ukrainian Hackers Claim Attack on Russian Scientific Research Center"According to Ukraine's defense intelligence directorate (GUR), the pro-Ukraine hacker group called BO Team infiltrated the Russian State Research Center on Space Hydrometeorology, destroying its database and valuable equipment.
-
"Browser Phishing Threats Grew 198% Last Year"Security researchers at Menlo Security have observed a 198% increase in browser-based phishing attacks during the latter half of 2023 compared to the first half, with a 206% rise in evasive attacks.
-
"Medical Lab Database Exposed 1.3M Records, COVID Test Info"An unsecured database exposed 1.3 million records, including COVID test results and other Personally Identifiable Information (PII).
-
"PoC for Easily Exploitable Fortra GoAnywhere MFT Vulnerability Released"Proof-of-Concept (PoC) exploit code for a critical vulnerability, tracked as CVE-2024-0204, in Fortra's GoAnywhere Managed File Transfer (MFT) solution has been made public, raising concerns that attackers will soon exploit it.
-
"Google Kubernetes Misconfig Lets Any Gmail Account Control Your Clusters"Threat actors with a Google account could exploit a loophole impacting Google Kubernetes Engine (GKE) to take over a Kubernetes cluster. The flaw has been dubbed "Sys:All" by the cloud security company Orca.