Recent Security News
-
Signal rolls out usernames that let you hide your phone number
February 20, 2024 at 02:15PM Signal has launched a beta rollout offering custom usernames to enhance privacy and communication. Users can create usernames to connect with others, without revealing their phone numbers. The feature allows for greater control over privacy settings and facilitates quick chat initiation through unique links or QR codes. This update aims…
-
‘KeyTrap’ DNS Bug Threatens Widespread Internet Outages
February 20, 2024 at 01:37PM Researchers recently uncovered a major DNS security flaw, “KeyTrap,” that can potentially cripple large sections of the Internet. Exploiting a flaw in the DNSSEC extension, a single packet can force servers into a loop, consuming computing power and causing widespread outages. Patching efforts are underway, but a more comprehensive solution…
-
ConnectWise Rushes to Patch Critical Vulns in Remote Access Tool
February 20, 2024 at 12:27PM ConnectWise has urgently released patches for two critical security flaws in its ScreenConnect remote desktop access product, warning of high risk of exploitation. The most severe bug allows an “authentication bypass using an alternate path or channel,” scoring 10/10 in CVSS, while a second bug, an “improper limitation of a…
-
ConnectWise urges ScreenConnect admins to patch critical RCE flaw
February 20, 2024 at 11:52AM ConnectWise issued a warning to immediately patch ScreenConnect servers due to high-severity flaws that can lead to remote code execution attacks. There is no evidence of exploitation, but urgency is stressed for on-premise partners. Huntress security researchers already created a bypass proof-of-concept exploit. CISA, NSA, and MS-ISAC have issued a…
-
Hacked Iraqi Voter Information Found For Sale Online
February 20, 2024 at 11:49AM Researchers uncovered voter data sale following a breach against Iraq’s Independent High Electoral Commission. The 21.58 GB database contains Iraqi voter info and a custom software client. Election cyber threats surged to 26% in 2022, jeopardizing democratic processes worldwide. Resecurity confirmed the leak and highlighted election threats from various actors…