Security researchers have warned that at least 30 million Dell computers may be at risk after discovering multiple vulnerabilities that could allow attackers to execute arbitrary code within the machines’ BIOS. Security vendor Eclypsium said 129 Dell models were affected by the chain of four bugs, which have a cumulative CVSS score of 8.4 (high). “These…
A Berlin startup has disclosed a remote-code-execution (RCE) vulnerability and a wormable cross-site-scripting (XSS) flaw in Pling, which is used by various Linux desktop theme marketplaces. Positive Security, which found the holes and is not to be confused with Russia’s Positive Technologies, said the bugs are still present in the Pling code and its maintainers…
Cybercrime as-a-service , Fraud Management & Cybercrime , Next-Generation Technologies & Secure Development Secureworks: New Group Apparently Waging Attacks Using Same Code Prajeet Nair (@prajeetspeaks) • June 24, 2021 Ransom note from attackers using LV malware (Source: Secureworks) A newly identified threat group is using a repurposed version of REvil ransomware to wage…
Business Continuity Management / Disaster Recovery , Fraud Management & Cybercrime , Governance & Risk Management Director of HSE, Nation’s Healthcare System, Describes the Costs Akshaya Asokan (asokan_akshaya) • June 24, 2021 The recovery costs for the May ransomware attack on Health Service Executive, Ireland’s publicly funded healthcare system, is likely to total…
Eclypsium has discovered a number of vulnerabilities, the combined exploitation of which allows remote code execution on Dell computers. The vulnerabilities affect the BIOSConnect feature of intelligent technology to maximize the performance of SupportAssist computers. The vulnerability chain scored 8.3 out of a maximum 10 on the CVSS severity scale. The cumulative exploitation of the…
John McAfee testifying via video during an extradition hearing at the National Court in Madrid on June 15. (AP pic) BARCELONA: Anti-virus software pioneer John McAfee’s lawyer said on Thursday he had seen no sign before the entrepreneur’s death in a Spanish prison that he would take his own life. Spanish coroners were conducting an…
Security researchers from Eclypsium have discovered a total of four vulnerabilities in Dell’s SupportAssist software. As the software is pre-installed on the majority of Dell machines running Windows, millions of systems are at risk of remote attack. Eclypsium says that a total of 129 Dell models are affected by the security issues. The chain of…
Image: Pete Linforth, Pixabay Joint Cyber Unit could ensure coordinated international response to attacks Print Print Pro Read More: cyber security European Commission security The European Commission has proposed the setting up of a new Joint Cyber Unit to tackle the rising number of serious cyber incidents impacting public services, as well as the life of businesses…
Written by Tonya Riley Jun 21, 2021 | CYBERSCOOP The Department of Homeland Security’s top cybersecurity agency doesn’t know how many agencies are segmenting their networks from unwanted outside traffic, a basic security practice, according to a letter recently sent to the office of Sen. Ron Wyden (D-Ore.) by the agency. The agency provided the…
Cybercrime , Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime Agency Would Help Member States Respond to Cyberattacks Akshaya Asokan (asokan_akshaya) • June 23, 2021 The European Commission has proposed creating a Joint Cyber Unit to help EU member states respond to and prevent cyberattacks, especially those involving ransomware. See Also: Bringing…
