For first access to corporate networks, ransomware gangs are now targeting a newly patched and actively exploited remote code execution (RCE) vulnerability affecting Atlassian…
General
Researchers identify flaws in Carrier’s Industrial Access Control System
At least 8 vulnerabilities have been discovered in Carrier’s LenelS2 HID Mercury access control system; The system is prevalent in healthcare, education, transportation and…
A large-scale Facebook accounts phishing attack was uncovered by PIXM
As phishing attempts continue to be a popular target for cybercriminals, one scam discovered that a user had acquired a million Facebook account credentials…
Onapsis Research Labs has discovered three actively exploited SAP vulnerabilities
The Onapsis Research Labs keep a close eye on the changing threat landscape in order to better understand how commercial software like SAP and…
Infected CCleaner search results propagate malware that steals personal information
Through search results for a pirated edition of the CCleaner Pro Windows optimization tool, malware that steals your passwords, credit cards, and crypto wallets…
Emotnet stealing credit card data from Google Chrome
The infamous Emotnet malware has been deploying a new module to steal credit card information stored in the Chrome web browser. The credit card…
U.S agencies alerts of Chinese attackers targeting Telecoms and Network service providers
U.S cybersecurity and intelligence agencies have cautioned about Chinese-state-sponsored cyber actors exploiting network vulnerabilities to public and private sector organizations since at least 2020.…
Microsoft Office is beset by a severe zero-day vulnerability
Microsoft Office has a security flaw that might allow for remote code execution attacks, according to researchers. The vulnerability gained notoriety as a zero-day…
QBot is now distributing Black Basta ransomware in bot-powered attacks
To spread laterally through hacked corporate environments, the Black Basta ransomware gang has collaborated with the QBot malware operation. QBot (QuakBot) is a Windows…
Yunmai’s weight-monitoring software faces mass account takeover danger due to an unpatched bug chain
At least 500,000 Android accounts have had their data compromised. According to security researchers, a chained zero-day attack could potentially expose all user data…