Recent Security News
-
Massive PSAUX ransomware attack targets 22,000 CyberPanel instances
October 29, 2024 at 03:17PM Over 22,000 CyberPanel instances faced a critical vulnerability exploited in a PSAUX ransomware attack, taking most offline. Security flaws in versions 2.3.6 and possibly 2.3.7 were identified, including defective authentication and command injection. Users are urged to upgrade immediately to mitigate risks and access potential decryption aid. ### Meeting Takeaways:…
-
About the security content of SafariĀ 18.1 – Apple Support
October 29, 2024 at 02:42PM Apple released updates for Safari 18.1 on macOS Ventura and Sonoma on October 28, 2024, addressing multiple vulnerabilities (CVE-2024-44259, CVE-2024-44244, CVE-2024-44229, CVE-2024-44296). Issues included memory corruption and failures to enforce Content Security Policy, potentially causing process crashes when processing malicious web content. **Meeting Notes Takeaways:** **Release Information:** – **Apple ID:**…
-
French ISP Confirms Cyberattack, Data Breach Affecting 19M
October 29, 2024 at 02:00PM Free, France’s second-largest ISP, reported a cyberattack that compromised internal management tools and customer data, affecting over 19 million accounts. The hacker attempted to sell stolen data on the Dark Web. Free confirmed no sensitive information was compromised and has notified affected customers while filing a criminal complaint. **Meeting Takeaways:…
-
QNAP fixes NAS backup software zero-day exploited at Pwn2Own
October 29, 2024 at 01:37PM QNAP addressed a critical zero-day vulnerability (CVE-2024-50388) in HBS 3 Hybrid Backup Sync, exploited at Pwn2Own Ireland 2024. The patch is available in version 25.1.1.673 and later. This follows a history of security challenges for QNAP devices, often targeted by ransomware gangs due to sensitive file storage. ### Meeting Takeaways:…