Security Archives

Security

Fortinet confirms data breach after hacker claims to steal 440GB of files

Posted on September 12, 2024 by Onsite Computing, Inc.

Cybersecurity giant Fortinet has confirmed it suffered a data breach after a threat actor claimed to steal 440GB of files from the company’s Microsoft Sharepoint server. […] Go to Source Author: Lawrence Abrams

Continue reading →

Security

UK arrests teen linked to Transport for London cyber attack

Posted on September 12, 2024 by Onsite Computing, Inc.

U.K.’s National Crime Agency says it arrested a 17-year-old teenager who is suspected of being connected to the cyberattack on Transport for London, the city’s public transportation agency. […] Go to Source Author: Lawrence Abrams

Continue reading →

Security

Hackers targeting WhatsUp Gold with public exploit since August

Posted on September 12, 2024 by Onsite Computing, Inc.

Hackers have been leveraging publicly available exploit code for two critical vulnerabilities in the WhatsUp Gold network availability and performance monitoring solution from Progress Software. […] Go to Source Author: Bill Toulas

Continue reading →

Security

Transport for London confirms customer data stolen in cyberattack

Posted on September 12, 2024 by Onsite Computing, Inc.

Transport for London (TfL) has determined that the cyberattack on September 1 impacts customer data, including names, contact details, email addresses, and home addresses. […] Go to Source Author: Bill Toulas

Continue reading →

Security

GitLab warns of critical pipeline execution vulnerability

Posted on September 12, 2024 by Onsite Computing, Inc.

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions. […] Go to Source Author: Bill Toulas

Continue reading →

Security

Fake password manager coding test used to hack Python developers

Posted on September 11, 2024 by Onsite Computing, Inc.

Members of the North Korean hacker group Lazarus posing as recruiters are baiting Python developers with coding test project for password management products that include malware. […] Go to Source Author: Bill Toulas

Continue reading →

Security

Adobe fixes Acrobat Reader zero-day with public PoC exploit

Posted on September 11, 2024 by Onsite Computing, Inc.

A cybersecurity researcher is urging users to upgrade Adobe Acrobat Reader after a fix was released yesterday for a remote code execution zero-day with a public in-the-wild proof-of-concept exploit. […] Go to Source Author: Lawrence Abrams

Continue reading →

Security

WordPress.org to require 2FA for plugin developers by October

Posted on September 11, 2024 by Onsite Computing, Inc.

Starting October 1st, WordPress.org accounts that can push updates and changes to plugins and themes will be required to activate two-factor authentication (2FA) on their accounts. […] Go to Source Author: Bill Toulas

Continue reading →

Security

Criminal IP and IPLocation.io Join Forces for Enhanced IP Analysis

Posted on September 11, 2024 by Onsite Computing, Inc.

AI SPERA announced today that its IP address intelligence engine, Criminal IP, has integrated with IPLocation.io. Learn more from Criminal IP about how this brings additional insights to Criminal IP’s threat intelligence database. […] Go to Source Author: Sponsored by Criminal IP

Continue reading →

Legal, Security

Chinese hackers linked to cybercrime syndicate arrested in Singapore

Posted on September 11, 2024 by Onsite Computing, Inc.

Six Chinese nationals and a Singaporean have been arrested on Monday in Singapore for their alleged role in malicious cyber activities committed in connection with a “global syndicate.” […] Go to Source Author: Bill Toulas

Continue reading →