A newly discovered vulnerability in Phoenix SecureCore UEFI firmware tracked as CVE-2024-0762 impacts devices running numerous Intel CPUs, with Lenovo already releasing new firmware updates to resolve the flaw. […]
Category Archives: Security
Auto Added by WPeMatico
A vulnerability dubbed “CosmicSting” impacting Adobe Commerce and Magento websites remains largely unpatched nine days after the security update has been made available, leaving millions of sites open to catastrophic attacks. […]
617-794-0001, A Little Sunshine, Aleksej Gubarev, Andtop Company, Atlas Data Privacy Corp., Barsky.com, Better Business Bureau, Bitseller Expert Limited, Boston Law Group, Breadcrumbs, BuzzFeed, Constella Intelligence, difive.com, Dmitry Lubarsky, DomainTools.com, Gary Norden, [email protected], Humanbook, Igor Lubarsky, Krebs, News, Pavel Kaydash, Radaris, Radaris.com, Security, Steele Dossier, trustoria.com, Val Gurvits, Webzilla, XBT Holding
KrebsOnSecurity Threatened with Defamation Lawsuit Over Fake Radaris CEO
20
Jun
Jun
On March 8, 2024, KrebsOnSecurity published a deep dive on the consumer data broker Radaris, showing how the original owners are two men in Massachusetts who operated multiple Russian language dating services and affiliate programs, in addition to a dizzying array of people-search websites. The subjects of that piece are threatening to sue KrebsOnSecurity for […]
The RansomHub ransomware operation is using a Linux encryptor designed specifically to encrypt VMware ESXi environments in corporate attacks. […]
A suspected Chinese threat actor tracked as UNC3886 uses publicly available open-source rootkits named ‘Reptile’ and ‘Medusa’ to remain hidden on VMware ESXi virtual machines, allowing them to conduct credential theft, command execution, and lateral movement. […]
Threat actors are actively exploiting a SolarWinds Serv-U path-traversal vulnerability, leveraging publicly available proof-of-concept (PoC) exploits. […]
Car dealership SaaS platform CDK Global suffered an additional breach Wednesday night as it was starting to restore systems shut down in an previous cyberattack. […]
T-Mobile has denied it was breached or that source code was stolen after a threat actor claimed to be selling stolen data from the telecommunications company. […]
Forklift manufacturer Crown Equipment confirmed today that it suffered a cyberattack earlier this month that disrupted manufacturing at its plants. […]
Advance Auto Parts has confirmed it suffered a data breach after a threat actor attempted to sell stolen data on a hacking forum earlier this month. […]