Hacking ATMs by exploiting flaws in ScrutisWeb ATM fleet software
Researchers found several flaws in the ScrutisWeb ATM fleet monitoring software that can expose ATMs to hack. Researchers from the…
Security
QwixxRAT, a new Windows RAT appears in the threat landscape
QwixxRAT is a new Windows remote access trojan (RAT) that is offered for sale through Telegram and Discord platforms. The…
All New Have I Been Pwned Domain Search APIs and Splunk Integration
Presently sponsored by: Unpatched devices keeping you up at night? Kolide can get your entire fleet updated in days. It’s…
Ongoing Xurum attacks target Magento 2 e-stores
Experts warn of ongoing attacks, dubbed Xurum, targeting e-commerce websites using Adobe’s Magento 2 CMS. Akamai researchers warn of ongoing…
Colorado HCPF Department notifies 4 million individuals after IBM MOVEit breach
The Colorado Department of Health Care Policy & Financing (HCPF) disclose a data breach after MOVEit attack on IBM. The…
China Hacked Japan’s Military Networks
The NSA discovered the intrusion in 2020—we don’t know how—and alerted the Japanese. The Washington Post has the story: The…
Nine flaws in CyberPower and Dataprobe solutions expose data centers to hacking
Multiple vulnerabilities in CyberPower PowerPanel Enterprise DCIM platform and Dataprobe PDU could expose data centers to hacking. Researchers from Trellix…
Multiple flaws in CODESYS V3 SDK could lead to RCE or DoS
16 vulnerabilities in Codesys products could result in remote code execution and DoS attacks exposing OT environments to hacking. Microsoft…
Security Affairs newsletter Round 432 by Pierluigi Paganini – International edition
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free…
The DHS’s CSRB to review cloud security practices following the hack of Microsoft Exchange govt email accounts
The DHS’s CSRB will review cloud security practices following recent hacks of Microsoft Exchange accounts used by US govt agencies.…