UK Electoral Commission Hacked
The UK Electoral Commission discovered last year that it was hacked the year before. That’s fourteen months between the hack…
Security
Two unauthenticated stack buffer overflows found in Ivanti Avalanche EMM
Ivanti Avalanche EMM product is impacted by two buffer overflows collectively tracked as CVE-2023-32560. Tenable researchers discovered two stack-based buffer…
Approximately 2000 Citrix NetScaler servers were backdoored in a massive campaign
A threat actor has compromised roughly 2,000 Citrix NetScaler servers exploiting a remote code execution tracked as CVE-2023-3519. In July…
Credentials for cybercrime forums found on roughly 120K computers infected with info stealers
Researchers discovered credentials associated with cybercrime forums on roughly 120,000 computers infected with information stealers. Threat intelligence firm Hudson Rock…
Monti Ransomware gang launched a new Linux encryptor
Monti Ransomware operators returned, after a two-month pause, with a new Linux variant of their encryptor. The Monti ransomware operators…
Zoom Can Spy on Your Calls and Use the Conversation to Train AI, But Says That It Won’t
This is why we need regulation: Zoom updated its Terms of Service in March, spelling out that the company reserves…
Hacking ATMs by exploiting flaws in ScrutisWeb ATM fleet software
Researchers found several flaws in the ScrutisWeb ATM fleet monitoring software that can expose ATMs to hack. Researchers from the…
QwixxRAT, a new Windows RAT appears in the threat landscape
QwixxRAT is a new Windows remote access trojan (RAT) that is offered for sale through Telegram and Discord platforms. The…
All New Have I Been Pwned Domain Search APIs and Splunk Integration
Presently sponsored by: Unpatched devices keeping you up at night? Kolide can get your entire fleet updated in days. It’s…
Ongoing Xurum attacks target Magento 2 e-stores
Experts warn of ongoing attacks, dubbed Xurum, targeting e-commerce websites using Adobe’s Magento 2 CMS. Akamai researchers warn of ongoing…