It was possible to exploit an Unauthenticated Time-Based Blind SQL Injection vulnerability in the Spam protection, AntiSpam, FireWall by CleanTalk WordPress Plugin before 5.153.4. The update_log function in lib/Cleantalk/ApbctWP/Firewall/SFW.php included a vulnerable query that could be injected via….
SonicWall is warning of an imminent risk of a ransomware attack targeting Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) products in a security notice today. “Organizations that fail to take appropriate actions to mitigate these vulnerabilities on their SRA and SMA 100 series products are at imminent risk of a targeted…
Entornointeligente.com / The state-owned giant said names, credit card numbers and passport information were among the data stolen, adding that the breach involved personal data registered between August 2011 and February 2021. An Air India Airbus A320neo plane takes off in Colomiers near Toulouse, France, December 13, 2017. (Reuters) Hackers have stolen data from about…
Microsoft is rolling out passwordless login support over the coming weeks, allowing customers to sign in to Microsoft accounts without using a password. The company first allowed commercial customers to rollout passwordless authentication in their environments in March after a breakthrough year in 2020 when Microsoft reported that over 150 million users were logging into…
Cybercrime , Cybercrime as-a-service , Cyberwarfare / Nation-State Attacks Russian Gang Member Was Stranded After COVID-19 Restriction Prajeet Nair (@prajeetspeaks) • September 7, 2021 A Russian citizen, alleged to be working as a developer for the malware-spreading organization Trickbot, reportedly has been arrested at Seoul-Incheon International Airport. He was questioned by Korean authorities…
Cybercrime , Endpoint Security , Fraud Management & Cybercrime On-Premises Software Patched, SaaS to Come Online Again Jeremy Kirk (jeremy_kirk) • July 12, 2021 Kaseya Executive Vice President Mike Sanders (Source: Kaseya) Miami-based software company Kaseya released patches on Sunday for its monitoring and management software that was exploited by a ransomware group….
CISO Discusses Changing Security Culture in Organizations Varun Haran (APACinfosec) • June 4, 2021 Mario Demarillas, CISO, Exceture Mario Demarillas, CISO and head of IT consulting and software engineering at Exceture, in the Philippines, strikes a balance between securing his organization and its business offering in security….
