The Parrot traffic direction system(TDS), which was reported earlier this year, had a more profound impact than thought before, research stated. Since February 2019, Sucuri has been following the campaign under the name “”NDSW/NDSX” and stated that “the malware was…
Earlier this year, a study of leaked chats of the infamous Conti ransomware group suggests that the syndicate has been working on a set of firmware attack methods accessing privileged code on affected devices. “Control over firmware gives attackers virtually…
Open Automation Software, a major ICS platform, has a number of security flaws, according to researchers (OAS). Exploiting these flaws could lead to the execution of arbitrary code on a target device. With the latest OAS Platform upgrades, the vendors…
Early Tuesday morning, Hospitals and clinics were hit by a cyberattack, said the Costa Rican Social Security Fund (CCSS). The attack was one among many attacks that have lately targeted the Central American country. CCSS had to shut down its…
As new malware is developed, hackers are becoming more interested in using the Windows Subsystem for Linux (WSL) as an attack surface, with the most complex instances being capable of espionage and downloading other dangerous modules. WSL allows native Linux…
A low-cost Turkish airline unwittingly exposed data of flight crew along with source code and flight data. Early reports say that the exposure happened because of the misconfiguration of an AWS bucket. A research team from security comparison site SafetyDetectives…
This month has seen an increase in ChromeLoader malware detections. There has been a steady stream of attacks since the beginning of the year. ChromeLoader ChromeLoader is a browser hijacker that modifies the settings of victims’ web browsers to display…
A zero-day flaw in Microsoft Office has caught the attention of cybersecurity researchers; the flaw can be exploited to execute arbitrary code in affected Windows systems. The vulnerability was discovered when an independent cybersecurity research team, known as nao_sec, came…
Information in the database could be utilised in social engineering and SIM switching attacks. A hacker stole a database containing hundreds of Verizon employees’ full names, email addresses, corporate ID numbers, and phone numbers. It’s uncertain whether all of the…
Zyxel has rolled out patches for four security flaws plaguing its firewall, AP Controller, and AP products. The flaw can be exploited to carry out arbitrary system commands and steal select information. CVE-2022-0734: Some firewalls have cross-site scripting (XSS) flaws…
