Security Archives

DNS0.EU private DNS service shuts down over sustainability issues

Posted on October 20, 2025 by Onsite Computing, Inc.

The DNS0.EU non-profit public DNS service focused on European users announced its immediate shut down due to time and resource constraints. […] Go to Source Author: Bill Toulas

Continue reading →

Retail giant Muji halts online sales after ransomware attack on supplier

Posted on October 20, 2025 by Onsite Computing, Inc.

Japanese retail company Muji has taken offline its store due to a logistics outage caused by a ransomware attack at its delivery partner, Askul. […] Go to Source Author: Bill Toulas

Continue reading →

Over 75,000 WatchGuard security devices vulnerable to critical RCE

Posted on October 20, 2025 by Onsite Computing, Inc.

Nearly 76,000 WatchGuard Firebox network security appliances are exposed on the public web and still vulnerable to a critical issue (CVE-2025-9242) that could allow a remote attacker to execute code without authentication. […] Go to Source Author: Bill Toulas

Continue reading →

Microsoft, Security

CISA: High-severity Windows SMB flaw now exploited in attacks

Posted on October 20, 2025 by Onsite Computing, Inc.

CISA says threat actors are now actively exploiting a high-severity Windows SMB privilege escalation vulnerability that can let them gain SYSTEM privileges on unpatched systems. […] Go to Source Author: Sergiu Gatlan

Continue reading →

Security

Self-spreading GlassWorm malware hits OpenVSX, VS Code registries

Posted on October 20, 2025 by Onsite Computing, Inc.

A new and ongoing supply-chain attack is targeting developers on the OpenVSX and Microsoft Visual Studio marketplaces with self-spreading malware called GlassWorm that has been installed an estimated 35,800 times. […] Go to Source Author: Bill Toulas

Continue reading →

Microsoft, Security

Microsoft warns of Windows smart card auth issues after October updates

Posted on October 20, 2025 by Onsite Computing, Inc.

Microsoft says the October 2025 Windows security updates are causing smart card authentication and certificate issues due to a change designed to strengthen the Windows Cryptographic Services. […] Go to Source Author: Sergiu Gatlan

Continue reading →

Security

Find hidden malicious OAuth apps in Microsoft 365 using Cazadora

Posted on October 20, 2025 by Onsite Computing, Inc.

Malicious OAuth apps can hide inside Microsoft 365 tenants. Huntress Labs’ Cazadora script helps uncover rogue apps before they lead to a breach. Dive deeper in their Tradecraft Tuesday sessions. […] Go to Source Author: Sponsored by Huntress Labs

Continue reading →

Security

TikTok videos continue to push infostealers in ClickFix attacks

Posted on October 19, 2025 by Onsite Computing, Inc.

Cybercriminals are using TikTok videos disguised as free activation guides for popular software like Windows, Spotify, and Netflix to spread information-stealing malware. […] Go to Source Author: Lawrence Abrams

Continue reading →

Apple, Security

Google ads for fake Homebrew, LogMeIn sites push infostealers

Posted on October 18, 2025 by Onsite Computing, Inc.

A new malicious campaign is targeting macOS developers with fake Homebrew, LogMeIn, and TradingView platforms that deliver infostealing malware like AMOS (Atomic macOS Stealer) and Odyssey. […] Go to Source Author: Bill Toulas

Continue reading →

Security

ConnectWise fixes Automate bug allowing AiTM update attacks

Posted on October 17, 2025 by Onsite Computing, Inc.

ConnectWise released a security update to address vulnerabilities, one of them with critical severity, in Automate product that could expose sensitive communications to interception and modification. […] Go to Source Author: Bill Toulas

Continue reading →

Category Archives: Security

Security, Technology

DNS0.EU private DNS service shuts down over sustainability issues

Security

Retail giant Muji halts online sales after ransomware attack on supplier

Security

Over 75,000 WatchGuard security devices vulnerable to critical RCE

Microsoft, Security

CISA: High-severity Windows SMB flaw now exploited in attacks

Security

Self-spreading GlassWorm malware hits OpenVSX, VS Code registries

Microsoft, Security

Microsoft warns of Windows smart card auth issues after October updates

Security

Find hidden malicious OAuth apps in Microsoft 365 using Cazadora

Security

TikTok videos continue to push infostealers in ClickFix attacks

Apple, Security

Google ads for fake Homebrew, LogMeIn sites push infostealers

Security

ConnectWise fixes Automate bug allowing AiTM update attacks