Fidelity Investments, a Boston-based multinational financial services company, disclosed that the personal information of over 77,000 customers was exposed after its systems were breached in August. […] Go to Source Author: Sergiu Gatlan
Category Archives: Security
The Underground ransomware gang has claimed responsibility for an October 5 attack on Japanese tech giant Casio, which caused system disruptions and impacted some of the firm’s services. […] Go to Source Author: Bill Toulas
GitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline execution flaw. […] Go to Source Author: Bill Toulas
University of College | shutterstock.com Hartkodierte Zugangsdaten im Quellcode der Asset-Management- und IT-Ticketing-Software “Web Help Desk” haben den IT-Dienstleister Solarwinds dazu veranlasst, einen Hotfix zu veröffentlichen. Nicht-autorisierte Angreifer, die diese Schwachstelle erfolgreich ausnutzen, können aus der Ferne auf interne Funktionen der Software zugreifen und (sensible) Daten auf Ziel-Devices manipulieren. Die Sicherheitslücke (CVE-2024-28987) weist einen Vulnerability Score von 9.1 […]
Crowdstrike und Action1 würden grundsätzlich gut zusammenpassen. Nach den neuesten Kommunikationseskapaden wird das aber wohl nichts mehr. Anton Vierietin | shutterstock.com Anfang August 2024 tauchten erste Presseberichte über eine mögliche Übernahme des Patch-Management-Anbieters Action1 durch Crowdstrike auf. Die Gerüchte begründeten sich in erster Linie auf einer internen E-Mail von Action1-CEO und Mitbegründer Alex Voyk. Demzufolge sei Crowdstrike […]
Internet Archive’s “The Wayback Machine” has suffered a data breach after a threat actor compromised the website and stole a user authentication database containing 31 million unique records. […] Go to Source Author: Lawrence Abrams
Today, CISA revealed that attackers actively exploit a critical FortiOS remote code execution (RCE) vulnerability in the wild. […] Go to Source Author: Sergiu Gatlan
Over 28,000 people from Russia, Turkey, Ukraine, and other countries in the Eurasian region were impacted by a large-scale cryptocurrency-stealing malware campaign. […] Go to Source Author: Bill Toulas
Palo Alto Networks warned customers today to patch security vulnerabilities (with public exploit code) that can be chained to let attackers hijack PAN-OS firewalls. […] Go to Source Author: Sergiu Gatlan
Mozilla has issued an emergency security update for the Firefox browser to address a critical use-after-free vulnerability that is currently exploited in attacks. […] Go to Source Author: Bill Toulas