Information Security (Page 76)

New legislation could punish ransomware attacks with up to 25 years in prison

On: February 17, 2022

Any hacking group could be sentenced to 25 years in prison for their cyberattack campaigns targeting critical infrastructure in Australia. Under the new local legislation, proposed in a recently announcedRead More →

Hacker took control of US school district systems and mailed every student cancelling all classes

On: February 17, 2022

In: Incidents

Dozens of families in the Needham School District fell for what appears to be a bad joke after receiving an email notifying them that this week’s classes would be canceled.Read More →

CSRF vulnerability in Grafana open source tool allows hackers to elevate their privileges through cross-origin attacks against administrators

On: February 16, 2022

In: Vulnerabilities

Two security researchers reported the detection of a critical vulnerability in the popular Grafana dashboard. Tracked as CVE-2022-21703, the flaw was described as a server-side request forgery (CSRF) that wouldRead More →

CVE-2021-44521: Critical code execution vulnerability in Apache Cassandra (CVSS score of 8.4)

On: February 16, 2022

In: Vulnerabilities

A full white paper was released this week on a recently fixed a critical remote code execution (RCE) vulnerability in Apache Cassandra, a distributed NoSQL database that offers high scalabilityRead More →

This Mexican businessman was charged for selling phone interception tools and spyware to companies and government agencies in Latin America

On: February 16, 2022

In: Incidents

The U.S. Department of Justice (DOJ) has reported that Mexican businessman Carlos Guerrero pleaded guilty to conspiracy to sell and use hacking tools while serving as director of a commercialRead More →

Choosing Between an Outsourced SOC and In-House SOC: What Makes a Difference?

On: February 16, 2022

In: Technology Talk

The sophistication of cyber threats is rapidly increasing, causing disastrous consequences for enterprises worldwide. According to a Microsoft Digital Defense Report, cybercriminal groups are evolving their techniques, adjusting the typesRead More →

Critical Threats to SaaS Applications and How to Solve Them

On: February 16, 2022

In: Technology Talk

Software as a Service (SaaS) is a software distribution model that allows cloud providers to host applications and make them available to end users over the Internet. In some cases,Read More →

Chinese researchers find multiple vulnerabilities in VMware ESXi, Workstation and Fusion; update ASAP

On: February 15, 2022

In: Vulnerabilities

Earlier this week, VMware announced the correction of multiple critical vulnerabilities in products such as VMware ESXi, Workstation and Fusion, most of them reported during last year’s Tianfu Cup ethicalRead More →

5 vulnerabilities patched in VMWare Cloud Foundation (ESXi). Update immediately

On: February 15, 2022

In: Vulnerabilities

Cybersecurity specialists report the detection of multiple vulnerabilities in VMware Cloud Foundation (ESXi), a popular hybrid cloud platform. According to the report, successful exploitation of the flaws would allow threatRead More →

Three young Russians are sent to prison for planning a terrorist act… in Minecraft

On: February 14, 2022

In: Incidents

Recent reports indicate that Russian authorities have sentenced three teenagers to five years in prison for an unprecedented reason: the young men allegedly “conspired” to blow up a virtual versionRead More →

Information Security (Page 76)

New legislation could punish ransomware attacks with up to 25 years in prison

Hacker took control of US school district systems and mailed every student cancelling all classes

CSRF vulnerability in Grafana open source tool allows hackers to elevate their privileges through cross-origin attacks against administrators

CVE-2021-44521: Critical code execution vulnerability in Apache Cassandra (CVSS score of 8.4)

This Mexican businessman was charged for selling phone interception tools and spyware to companies and government agencies in Latin America

Choosing Between an Outsourced SOC and In-House SOC: What Makes a Difference?

Critical Threats to SaaS Applications and How to Solve Them

Chinese researchers find multiple vulnerabilities in VMware ESXi, Workstation and Fusion; update ASAP

5 vulnerabilities patched in VMWare Cloud Foundation (ESXi). Update immediately

Three young Russians are sent to prison for planning a terrorist act… in Minecraft

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Hacking with MagicDots: Exploiting Dots & Spaces in Filenames/Pathnames for Permanent Admin Rights

Compromising Cryptographic Key Security Through PuTTY: A Deep Dive into CVE-2024-31497

How to hack a LG Smart TV via vulnerabilities in LG WebOS?

How to Check if a Linux Distribution is Compromised by the XZ Utils Backdoor in 6 Steps

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

The API Security Checklist: 10 strategies to keep API integrations secure

11 ways of hacking into ChatGpt like Generative AI systems

How to send spoof emails from domains that have SPF and DKIM protections?

Silent Email Attack CVE-2023-35628 : How to Hack Without an Email Click in Outlook

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

CVSS 4.0 Explained: From Complexity to Clarity in Vulnerability Assessment

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Inside the Scam: How Ransomware Gangs Fool You with Data Deletion Lies!

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]