Threats and Risks

CISA issues warning on active exploitation of PwnKit Linux vulnerability

Threats and Risks

CISA issues warning on active exploitation of PwnKit Linux vulnerability

All US federal agencies that fall under the Federal Civilian Executive Branch are required to secure their systems against the bug by July 18

clock 30 June 2022 • 2 min read
Strava fitness app used to spy on Israeli military officials

Threats and Risks

Strava fitness app used to spy on Israeli military officials

The flaw has also exposed the locations of a number of sensitive sites in the country.

clock 21 June 2022 • 3 min read
Hertzbleed vulnerabiity in AMD and Intel CPUs could leak cryptographic keys

Threats and Risks

Hertzbleed vulnerabiity in AMD and Intel CPUs could leak cryptographic keys

Intel says an attack probably wouldn't work outside a lab environment

clock 16 June 2022 • 2 min read
Ransomware gang deploys BlackCat to attack hotel and creates searchable website of hacked data

Security

Ransomware gang deploys BlackCat to attack hotel and creates searchable website of hacked data

Cyber-criminal groups have recently ramped up their use of Ransomware-as-a-Service (RaaS) BlackCat/ALPHA-V, first identified by security researchers in November 2021, and upped the ante by publishing the hacked data on a dedicated website.

clock 15 June 2022 • 1 min read
Follina flaw being exploited by Russian hackers, info stealers

Threats and Risks

Follina flaw being exploited by Russian hackers, info stealers

Reports of Ukrainian media organisations receiving emails with compromised Word docs, and AsyncRAT Trojan delivered by groups exploiting the unpatched flaw

clock 14 June 2022 • 2 min read
Symbiote: credential-stealing Linux back door that's nearly impossible to detect

Threats and Risks

Symbiote: credential-stealing Linux back door that's nearly impossible to detect

Sophisticated malware uses a variety of methods to evade detection

clock 13 June 2022 • 2 min read
Threat actors actively exploiting Windows Follina zero-day to deliver Qbot malware

Threats and Risks

Threat actors actively exploiting Windows Follina zero-day to deliver Qbot malware

Microsoft has still not provided a fix for the flaw

clock 08 June 2022 • 3 min read
Microsoft Office zero-day flaw 'Follina' uncovered by researchers

Threats and Risks

Microsoft Office zero-day flaw 'Follina' uncovered by researchers

Word attack is possible even with macros turned off, no patch yet available

clock 31 May 2022 • 3 min read
IoT malware EnemyBot abuses critical VMware, F5 BIG-IP flaws

Threats and Risks

IoT malware EnemyBot abuses critical VMware, F5 BIG-IP flaws

EnemyBot is fast integrating exploits for recently announced vulnerabilities to improve its capabilities.

clock 30 May 2022 • 3 min read
Critical vulnerabilities found in OAS industrial automation software

Threats and Risks

Critical vulnerabilities found in OAS industrial automation software

OAS Platform used in many industrial IoT and SCADA systems has bugs that could be exploited for unauthorised access and remote code execution

clock 27 May 2022 • 2 min read
Most read
01

Cyberattack stops all deliveries at Wiltshire Farm Foods

29 June 2022 • 2 min read
02

Dark data: "The dirty secret of the ICT sector"

27 June 2022 • 8 min read
03

Eco-warriors: Microsoft Azure vs Amazon AWS on sustainability

29 June 2022 • 12 min read
04

Apple accused of harming browser engine diversity

28 June 2022 • 3 min read
05

Remove TikTok from Apple and Android app stores, urges US official

30 June 2022 • 3 min read