News & Updates

Half a million hotel guests at risk after hackers accessed sensitive data

/
The personal information of almost half a million people is now in the hands of hackers after a security breach of a company used by some of the world’s best known hotel brands.

Hotel management software provider Otelier boasts that more than 10,000 hotels – including brands like Marriott, Hilton, and Hyatt – use its cloud-based solution to help them run their operations.

Otelier has now disclosed that hackers allegedly breached its systems from July until October 2024, with hackers stealing w

News & Updates

A 7-Zip bug allows to bypass the Mark of the Web (MotW) feature

/
A vulnerability in the 7-Zip file software allows attackers to bypass the Mark of the Web (MotW) Windows security feature. Attackers can exploit a vulnerability, tracked as CVE-2025-0411, in the free, open-source file archiver software 7-Zip to bypass the Mark of the Web (MotW) Windows security feature. Mark of the Web (MotW) is a security […]
News & Updates

Oracle Releases January 2025 Patch to Address 318 Flaws Across Major Products

/
Oracle is urging customers to apply its January 2025 Critical Patch Update (CPU) to address 318 new security vulnerabilities spanning its products and services.
The most severe of the flaws is a bug in the Oracle Agile Product Lifecycle Management (PLM) Framework (CVE-2025-21556, CVSS score: 9.9) that could allow an attacker to seize control of susceptible instances.
“Easily exploitable
News & Updates

Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Device

/
Web infrastructure and security company Cloudflare on Tuesday said it detected and blocked a 5.6 Terabit per second (Tbps) distributed denial-of-service (DDoS) attack, the largest ever attack to be reported to date.
The UDP protocol-based attack took place on October 29, 2024, targeting one of its customers, an unnamed internet service provider (ISP) from Eastern Asia. The activity originated
News & Updates

Imperva Protects Against the Exploited CVEs in the Cleo Data Theft Attacks

/

The Clop ransomware group has once again demonstrated its ability to exploit vulnerabilities to compromise sensitive systems. As Cleo—a managed file transfer provider for businesses—grapples with the aftermath of Clop’s targeted attack on their systems, the spotlight turns to CVE-2024-50623 and CVE-2024-55956, two critical vulnerabilities that enabled these breaches.   In this blog, we’ll provide an […]

The post Imperva Protects Against the Exploited CVEs in the Cleo Data Theft Attacks appeared first on Blog.

Exit mobile version