A recently patched high-severity flaw impacting SolarWinds Serv-U file transfer software is being actively exploited by malicious actors in the wild. The vulnerability, tracked as CVE-2024-28995 (CVSS score: 8.6), concerns a directory transversal bug that could allow attackers to read sensitive files on the host machine. Affecting all versions of the software prior to and […]
Author Archives: [email protected]
The U.S. Department of Commerce’s Bureau of Industry and Security (BIS) on Thursday announced a “first of its kind” ban that prohibits Kaspersky Lab’s U.S. subsidiary from directly or indirectly offering its security software in the country. The blockade also extends to the cybersecurity company’s affiliates, subsidiaries and parent companies, the department said, adding the […]
20
Jun
Jun
Hello Windows Insiders, As part of our ongoing effort to improve your experience with the Microsoft Photos app on Windows 11, we have some exciting updates to share. We listened to your feedback and made some changes to the Viewer and Media Import features that we think you will love. We’re beginning to roll this […]
Today, the Biden administration has announced an upcoming ban of Kaspersky antivirus software and the pushing of software updates to US companies and consumers, giving customers until September 29, 2024, to find alternative security software. […]
A newly discovered vulnerability in Phoenix SecureCore UEFI firmware tracked as CVE-2024-0762 impacts devices running numerous Intel CPUs, with Lenovo already releasing new firmware updates to resolve the flaw. […]
20
Jun
Jun
Google has helped restore and enhance more than 750 acres of monarch butterfly and pollinator habitat across California.
A vulnerability dubbed “CosmicSting” impacting Adobe Commerce and Magento websites remains largely unpatched nine days after the security update has been made available, leaving millions of sites open to catastrophic attacks. […]
617-794-0001, A Little Sunshine, Aleksej Gubarev, Andtop Company, Atlas Data Privacy Corp., Barsky.com, Better Business Bureau, Bitseller Expert Limited, Boston Law Group, Breadcrumbs, BuzzFeed, Constella Intelligence, difive.com, Dmitry Lubarsky, DomainTools.com, Gary Norden, [email protected], Humanbook, Igor Lubarsky, Krebs, News, Pavel Kaydash, Radaris, Radaris.com, Security, Steele Dossier, trustoria.com, Val Gurvits, Webzilla, XBT Holding
KrebsOnSecurity Threatened with Defamation Lawsuit Over Fake Radaris CEO
20
Jun
Jun
On March 8, 2024, KrebsOnSecurity published a deep dive on the consumer data broker Radaris, showing how the original owners are two men in Massachusetts who operated multiple Russian language dating services and affiliate programs, in addition to a dizzying array of people-search websites. The subjects of that piece are threatening to sue KrebsOnSecurity for […]
The RansomHub ransomware operation is using a Linux encryptor designed specifically to encrypt VMware ESXi environments in corporate attacks. […]
A suspected Chinese threat actor tracked as UNC3886 uses publicly available open-source rootkits named ‘Reptile’ and ‘Medusa’ to remain hidden on VMware ESXi virtual machines, allowing them to conduct credential theft, command execution, and lateral movement. […]