Security News

Filter by:

Passport info and healthcare data leaked from Indonesia's COVID-19 test-and-trace app for travelers

About 1.3 million people had their sensitive personal data, COVID-19 test results and more exposed on an open server.
ZDnet 31 Aug 2021 812 Views

Microsoft Warns of Widespread Phishing Attacks Using Open Redirects

Microsoft is warning of a widespread credential phishing campaign that leverages open redirector links in email communications as a vector to trick users into visiting malicious websites while effectively bypassing security software. "Attackers combine these links with social engineering baits that impersonate well-known productivity tools...
The Hacker News 29 Aug 2021 12077 Views

Azure Cosmos DB alert: This critical vulnerability puts users at risk

Cosmos DB is in serious trouble thanks to ChaosDB, a critical vulnerability in the Azure cloud database. It enables anyone to take remote control of your databases. Fortunately, there is a fix.
ZDnet 28 Aug 2021 579 Views

Cloudflare says it stopped the largest DDoS attack ever reported

Cloudflare's system detected and mitigated a 17.2 million request-per-second DDoS attack, which they said is three times larger than any previous one.
ZDnet 28 Aug 2021 623 Views

Ragnarok ransomware releases master decryptor after shutdown

Ragnarok ransomware gang appears to have called it quits and released the master key that can decrypt files locked with their malware.
Bleeping Computer 27 Aug 2021 477 Views

Synology: Multiple products impacted by OpenSSL RCE vulnerability

Taiwan-based NAS maker Synology has revealed that recently disclosed remote code execution (RCE) and denial-of-service (DoS) OpenSSL vulnerabilities impact some of its products.
Bleeping Computer 27 Aug 2021 610 Views

Mirai-style IoT botnet is now scanning for router-pwning critical vuln in Realtek kit

Researchers warn of Dark.IoT's rapidly evolving nasty A denial-of-service vulnerability affecting SDKs for Realtek chipsets used in 65 vendors' IoT devices has been incorporated into a son-of-Mirai botnet, according to new research.…
The Register 26 Aug 2021 10315 Views

ProxyLogon flaw, evil emails, SQL injections used to open backdoors on Windows boxes

Multi-use toolkit deployed on victims' networks across Asia, North America ESET and TrendMicro have identified a novel and sophisticated backdoor tool that miscreants have slipped onto compromised Windows computers in companies mostly in Asia but also in North America.…
The Register 26 Aug 2021 10326 Views

Win10 Admin Rights Tossed Off by Yet Another Plug-In

Then again, you don’t even need the actual device – in this case, a SteelSeries peripheral – since emulation works just fine to launch with full SYSTEM rights.
Threatpost 26 Aug 2021 456 Views

Microsoft Spills 38 Million Sensitive Data Records Via Careless Power App Configs

Data leaked includes COVID-19 vaccination records, social security numbers and email addresses tied to American Airlines, Ford, Indiana Department of Health and New York City public schools.
Threatpost 24 Aug 2021 401 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY