Security Archives

Microsoft: Exchange Online bug mistakenly quarantines user emails

Posted on March 21, 2025 by Onsite Computing, Inc.

Microsoft is investigating an Exchange Online bug causing anti-spam systems to mistakenly quarantine some users’ emails. […] Go to Source Author: Sergiu Gatlan

Continue reading →

US removes sanctions against Tornado Cash crypto mixer

Posted on March 21, 2025 by Onsite Computing, Inc.

The U.S. Department of Treasury announced today that it has removed sanctions against the Tornado Cash cryptocurrency mixer, which North Korean Lazarus hackers used to launder hundreds of millions stolen in multiple crypto heists. […] Go to Source Author: Sergiu Gatlan

Continue reading →

Gaming, Security

Steam pulls game demo infecting Windows with info-stealing malware

Posted on March 21, 2025 by Onsite Computing, Inc.

Valve has removed a game titled ‘Sniper: Phantom’s Resolution’ from the Steam store following multiple user reports that indicated its demo installer actually infected their systems with information stealing malware. […] Go to Source Author: Bill Toulas

Continue reading →

Security

Veeam RCE bug lets domain users hack backup servers, patch now

Posted on March 20, 2025 by Onsite Computing, Inc.

Veeam has patched a critical remote code execution vulnerability tracked as CVE-2025-23120 in its Backup & Replication software that impacts domain-joined installations. […] Go to Source Author: Lawrence Abrams

Continue reading →

Security

CISA tags NAKIVO backup flaw as actively exploited in attacks

Posted on March 20, 2025 by Onsite Computing, Inc.

CISA has warned U.S. federal agencies to secure their networks against attacks exploiting a high-severity vulnerability in NAKIVO’s Backup & Replication software. […] Go to Source Author: Sergiu Gatlan

Continue reading →

Security

VSCode extensions found downloading early-stage ransomware

Posted on March 20, 2025 by Onsite Computing, Inc.

Two malicious VSCode Marketplace extensions were found deploying in-development ransomware from a remote server, exposing critical gaps in Microsoft’s review process. […] Go to Source Author: Bill Toulas

Continue reading →

Security

Critical Cisco Smart Licensing Utility flaws now exploited in attacks

Posted on March 20, 2025 by Onsite Computing, Inc.

Attackers have started targeting Cisco Smart Licensing Utility (CSLU) instances unpatched against a vulnerability exposing a built-in backdoor admin account. […] Go to Source Author: Sergiu Gatlan

Continue reading →

Security

RansomHub ransomware uses new Betruger ‘multi-function’ backdoor

Posted on March 20, 2025 by Onsite Computing, Inc.

Security researchers have linked a new backdoor dubbed Betruger, deployed in several recent ransomware attacks, to an affiliate of the RansomHub operation. […] Go to Source Author: Sergiu Gatlan

Continue reading →

Legal, Security

UK urges critical orgs to adopt quantum cryptography by 2035

Posted on March 20, 2025 by Onsite Computing, Inc.

The UK’s National Cyber Security Centre (NCSC) has published specific timelines on migrating to post-quantum cryptography (PQC), dictating that critical organizations should complete migration by 2035. […] Go to Source Author: Bill Toulas

Continue reading →

Security

WordPress security plugin WP Ghost vulnerable to remote code execution bug

Posted on March 20, 2025 by Onsite Computing, Inc.

Popular WordPress security plugin WP Ghost is vulnerable to a critical severity flaw that could allow unauthenticated attackers to remotely execute code and hijack servers. […] Go to Source Author: Bill Toulas

Continue reading →

Category Archives: Security

Microsoft, Security

Microsoft: Exchange Online bug mistakenly quarantines user emails

CryptoCurrency, Security

US removes sanctions against Tornado Cash crypto mixer

Gaming, Security

Steam pulls game demo infecting Windows with info-stealing malware

Security

Veeam RCE bug lets domain users hack backup servers, patch now

Security

CISA tags NAKIVO backup flaw as actively exploited in attacks

Security

VSCode extensions found downloading early-stage ransomware

Security

Critical Cisco Smart Licensing Utility flaws now exploited in attacks

Security

RansomHub ransomware uses new Betruger ‘multi-function’ backdoor

Legal, Security

UK urges critical orgs to adopt quantum cryptography by 2035

Security

WordPress security plugin WP Ghost vulnerable to remote code execution bug