VMware released updates to plug two loopholes in vCenter Server and Cloud Foundation that can be exploited to obtain sensitive information. The acute vulnerability relates to an arbitrary file in the vSphere Web Client. The bug, labelled as CVE-2021-21980, has…
The Israeli government has cut down on the number of countries that can buy software, cyber tools from Israeli firms. Now the list has only 37 countries, cyber export down from 102 countries. The new cyber export list, obtained by…
Researchers have found a new type of DDoS attack targeting internet-linked printers. The printers that are not updated or regularly configured are vulnerable to the attack. The attack is known as Printjack. Many printers are publicly accessible, which leaves them…
A threat actor who has targeted the Middle East in the past has developed its Android mobile Spyware. The advanced Android mobile spyware is more stealthy and lethal: stealthy as the mobile spyware comes under the wrap of a benign…
Godaddy reported its third data breach since 2018. The latest data breach entailed unauthorized data access of 1.2 million active and inactive customers. In a filing with the U.S. Securities and Exchange Commission (SEC), the world’s largest domain registrar, Godaddy…
A devolution survey underscores the gravity of cyberattacks. The aggregate global cybercrime totalled $16.4 billion each day The average data breach cost of firms, less than 500 employees, was $2.98 million per incident in 2021, reports an IBM study. Further,…
A report by California crowdsourced cybersecurity platform Bugcrowd states that ethical hackers have warded off $27bn worth of cybercrime during the COVID-19 pandemic. The observation was in the Bugcrowd’s latest annual Inside the Mind of a Hacker report, which was…
Microsoft reported HTML smuggling, which spread via email, had been extensively targeting banking organizations. Microsoft described the attack that surfaced in the early half of this month as “a highly evasive malware delivery technique”. The attack uses genuine HTML5 and…
The U.S-sanctioned Positive Technologies has underscored three vulnerabilities in the zoom, Zoom vulnerability that can be used for crashing or hijacking on-prem parts of the video conferencing system. One of the vulnerabilities is related to input validation which can be…
The FBI reported threat actors taking over FBI email system to send thousands of false messages about a “sophisticated chain attack.” Threat intelligence non-profit SpamHaus released information about the attack first. The attack entailed sending false warning emails with the…
