Watch out! A spike in ransomware attacks may be headed our way over Labor Day weekend. Yesterday, the FBI jointly with the Cybersecurity and Infrastructure Security Agency (CISA) issued a warning to be on high alert for ransomware attacks this weekend, after recent targeted attacks over Mother’s Day, Memorial Day and Fourth of July weekends….
Critical Infrastructure Security , Endpoint Security , Governance & Risk Management Flaws Fixed, Mitigations Issued for Discontinued Devices Mihir Bagwe • September 4, 2021 Moxa has confirmed patching 60 vulnerabilities in its latest firmware update. (Source: Moxa) SEC Consult, a cybersecurity consultancy firm that is part of Atos, has reportedly found multiple vulnerabilities…
3rd Party Risk Management , Application Security , Application Security & Online Fraud Cisco NFV Infrastructure Software Users Urged to Patch Immediately Prajeet Nair (@prajeetspeaks) • September 4, 2021 (Photo: Cisco Networks) Cisco has released an urgent software update to fix a critical authentication bug, that can allow an unauthenticated, remote attacker to…
WhatsApp has patched a vulnerability that could allow an attacker to read sensitive information from the app’s memory, including private messages using a specially crafted image. The vulnerability was reported to WhatsApp by cybersecurity firm Check Point Research, and it existed within the image filter function of WhatsApp for Android and WhatsApp Business for Android…
This article has been indexed from MacRumors: Mac News and Rumors – Front Page A normal-looking Lightning cable that can used to steal data like passwords and send it to a hacker has been developed, Vice reports. The “OMG Cable” compared to Apple’s Lightning to USB cable. The “OMG Cable” works exactly like a normal…
3rd Party Risk Management , Application Security , Breach Notification Russian-Linked Group Targeted Software Design Firm And Other Tech Companies Scott Ferguson (Ferguson_Writes) • September 3, 2021 Source: Autodesk Autodesk, a California-based design software and 3D technology firm, is now acknowledging that it was one of several tech and security companies targeted by…
Hackers started exploiting a vulnerability in Atlassian’s Confluence enterprise collaboration product just one week after the availability of a patch was announced. Atlassian informed customers on August 25 that Confluence is affected by a critical vulnerability — described as an OGNL injection issue — that can allow remote attackers to execute arbitrary code on impacted…
History Shows Threats Ramp Up When Businesses Shut Down Labor Day weekend is upon us. Unfortunately, history has shown that, rather than resting, hackers and other threat actors take advantage of holidays to attack closed or understaffed businesses when they least expect it. To remind businesses not to let their guard down over the holiday…
Autodesk has confirmed that it was also targeted by the Russian state hackers behind the large-scale SolarWinds Orion supply-chain attack, almost nine months after discovering that one of its servers was backdoored with Sunburst malware. The US software and services company provides millions of customers from the design, engineering, and construction sectors with CAD (computer-aided design),…
Blockchain & Cryptocurrency , Cryptocurrency Fraud , Fraud Management & Cybercrime Experts Warn of Continued Scrutiny in Cryptocurrency Markets Dan Gunderman (dangun127) • September 3, 2021 The U.S. Securities and Exchange Commission this week announced civil action against defunct cryptocurrency lending platform BitConnect; its founder, Satish Kumbhani; and its top U.S. promoter, Glenn…
