The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three flaws impacting Mitel MiCollab and Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The list of vulnerabilities is as follows – CVE-2024-41713 (CVSS score: 9.1) – A path traversal vulnerability in Mitel MiCollab that could allow […]
Author Archives: Onsite Computing, Inc.
Until September 2024, the encrypted messaging service acceded to 14 requests for user data from the US; that number jumped to 900 after its CEO was detained by French authorities in August. Go to Source Author: Becky Bracken, Senior Editor, Dark Reading
Japanese electronics manufacturer Casio says that the October 2024 ransomware incident exposed the personal data of approximately 8,500 people. […] Go to Source Author: Bill Toulas
The sprawling social media and gaming platform says that being considered a Chinese military business must be a mistake. Go to Source Author: Kristina Beek, Associate Editor, Dark Reading
A relatively new Mirai-based botnet has been growing in sophistication and is now leveraging zero-day exploits for security flaws in industrial routers and smart home devices. […] Go to Source Author: Bill Toulas
Today, the White House announced the launch of the U.S. Cyber Trust Mark, a new cybersecurity safety label for internet-connected consumer devices. […] Go to Source Author: Sergiu Gatlan
BIOS/UEFI vulnerabilities in the iSeq 100 DNA sequencer from U.S. biotechnology company Illumina could let attackers disable devices used for detecting illnesses and developing vaccines. […] Go to Source Author: Ionut Ilascu
CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited in attacks. […] Go to Source Author: Sergiu Gatlan
Washington state has sued T-Mobile over failing to secure the sensitive personal information of over 2 million Washington residents in a 2021 data breach. […] Go to Source Author: Bill Toulas
The breach was carried out by exploiting CVE-2024-12356 in BeyondTrust cybersecurity company, just last week. Go to Source Author: Kristina Beek, Associate Editor, Dark Reading