Child abuse site taken down, organized child exploitation crime suspected – exclusive
A child abuse site has been taken down following a request to German law enforcement by Cybernews research team. A…
Security
How Lazarus impersonated Meta to attack a target in Spain – Week in security with Tony Anscombe
During the attack, the group deployed several tools, most notably a newly-discovered sophisticated backdoor that ESET named LightlessCan
Weekly Update 367
Presently sponsored by: EPAS by Detack. No EPAS protected password has ever been cracked and won’t be found in any…
A still unpatched zero-day RCE impacts more than 3.5M Exim servers
Experts warn of a critical zero-day vulnerability, tracked as CVE-2023-42115, in all versions of Exim mail transfer agent (MTA) software.…
Friday Squid Blogging: Protecting Cephalopods in Medical Research
From Nature: Cephalopods such as octopuses and squid could soon receive the same legal protection as mice and monkeys do…
Chinese threat actors stole around 60,000 emails from US State Department in Microsoft breach
China-linked threat actors stole around 60,000 emails from U.S. State Department after breaching Microsoft’s Exchange email platform in May. China-linked…
What Is mTLS? The Essential Guide You Can’t Afford to Miss
Intro: mTLS — The Unsung Hero of Cybersecurity Picture this: You’re a secret agent on a high-stakes mission. You have…
Misconfigured WBSC server leaks thousands of passports
The World Baseball Softball Confederation (WBSC) left open a data repository exposing nearly 50,000 files, some of which were highly…
What is Elliptic Curve Cryptography (ECC) and How Does it Work?
The technological advancements that have come with the digital age have simplified life in several ways. Their key undoing, though,…
CISA adds JBoss RichFaces Framework flaw to its Known Exploited Vulnerabilities catalog
US CISA added the flaw CVE-2018-14667 in Red Hat JBoss RichFaces Framework to its Known Exploited Vulnerabilities catalog. US Cybersecurity…