Cybersecurity agencies in Australia and the U.S. are warning of an actively exploited vulnerability impacting ForgeRock’s OpenAM access management solution that could be leveraged to execute arbitrary code on an affected system remotely.
“The [Australian Cyber Security Centre] has observed actors exploiting this vulnerability to compromise multiple hosts and deploy additional malware and tools,”
Back in 2016, Apple announced a $1 billion investment in the Chinese Uber competitor Didi Global, with Tim Cook saying the investment presented a variety of strategic opportunities for Apple. The investment also earned Apple a seat on Didi’s board. Now, just days after going public with a US IPO, Didi Chuxing is under fire…
Microsoft Windows July 2021 Patch Tuesday just rolled out, patching 12 critical security vulnerabilities in a total of 116 issues. It is noteworthy that three of the issues addressed this month were actively exploited in the wild. These bugs include a critical scripting engine memory corruption issue known as CVE-2021-34448, and two Windows kernel elevation-of-privilege…
The U.S. National Security Agency (NSA) has published guidance on how security professionals can secure enterprise networks and sensitive data by adopting a Zero Trust security model. Titled “Embracing a Zero Trust Security Model,” the document details the benefits and challenges of the security model, and also provides a series of recommendations on the implementation…
AP — John McAfee, the outlandish security software pioneer who tried to live life as a hedonistic outsider while running from a host of legal troubles, was found dead in his jail cell near Barcelona on Wednesday. His death came just hours after a Spanish court announced that it had approved his extradition to the…
FireEye, a California-based cybersecurity company, characterises the group as an actor focused on obtaining information that can provide political, economic and military advantages to the government and state-owned enterprises of China. The campaign compromised the integrity of several e-mail accounts, including ones used by Members of the Parliament. It is investigated as aggravated…
Former contractor deleted 1,200 user accounts in revenge. A disgruntled IT contractor worker was sentenced today in federal court for hacking into the server of a Carlsbad, Calif., company and deleting over 1,200 Microsoft user accounts in retaliation for a bad performance review. The unnamed company had to shutter for two days while it dealt…
