The attackers used SQL injection and cross-site scripting (XSS) to target at least 65 recruiting and retail websites with legitimate penetration testing tools, stealing databases containing more than 2 million…
Category: Cyber Security
Crucial airline flight planning app open to interception risks
A mobile app used by many airline pilots for crucial flight planning purposes was exposed to attacks that could interfere with safe takeoff and landing procedures due to a disabled…
The US Department of Justice dismantles Warzone’s RAT infrastructure and arrests key operators
February 11, 2024PressroomMalware/Cybercrime The US Department of Justice (DoJ) on Friday announced the seizure of online infrastructure used to sell a remote access trojan (RAT) called Warzone RAT. The domains…
Two maximum severity bugs open Fortinet’s SIEM to code execution
Two critical vulnerabilities in Fortinet’s FortiSIEM product have been assigned provisional CVSS scores of 10. However, details on the bugs remain scarce. What is known is that the vulnerabilities, tracked…
Launch of the Post-Quantum Cryptography Alliance to advance post-quantum cryptography
PRESS RELEASE SAN FRANCISCO, February 6, 2024 /PRNewswire/ — The Linux Foundation is excited to announce the launch of Alliance for Post-Quantum Cryptography (PQCA), an open and collaborative initiative to…
IONIX Completes $42 Million Funding Round to Expand Threat Exposure Management Across the Entire Attack Surface
PRESS RELEASE TEL AVIV, Israel–(COMMERCIAL WIRE)– IONICE, a leader in Attack Surface Management (ASM), today announced that it has completed its $42 million A-round financing by securing $15 million in…
Verizon employee data exposed in insider threat incident
About 63,000 Verizon employees were affected by a breach that occurred in September 2023 but went undiscovered for three months. In a notice to the Maine Attorney General’s Office, the…
Ransomware payments hit record high in 2023 – Safe Week with Tony Anscombe
Videos, ransomware Dubbed a “watershed year for ransomware,” 2023 marked a turnaround from the decline in ransomware payments seen the previous year February 9, 2024 According to an analysis by…
Managed everything? Suppliers shift focus to services
Threat management firm Rapid7 and data security firm Varonis announced new managed services this week, becoming the latest security companies to bundle complex security capabilities into managed offerings. On February…
IoT/OT network adversaries advance amid a barrage of bugs
New telemetry data from the Internet of Things and operational technology networks highlights this issue risks associated with IoT and OT installations: These networks are subject to highly sophisticated attacks…