Recent Security News
-
Mozilla Patches Firefox Vulnerability Allowing Remote Code Execution, Sandbox Escape
December 20, 2023 at 10:21AM Mozilla announced security updates for Firefox 121 and Thunderbird 115.6 addressing 21 vulnerabilities, including high-severity issues like WebGL heap buffer overflow, NSS NIST curves vulnerability to Minerva attack, and uninitialized data exposure in EncryptingOutputStream. Both updates also include patches for several memory safety issues. The release notes contain further details.…
-
NSA Blocked 10 Billion Connections to Malicious and Suspicious Domains
December 20, 2023 at 10:21AM The NSA’s 2023 Cybersecurity Year in Review report highlights its efforts to block 10 billion user connections to malicious domains, focus on protecting national security systems, offer no-cost cybersecurity services to DoD contractors, release six security products, improve vulnerability scanning, promote AI security, and maintain its commitment to privacy and…
-
BlackCat Strikes Back: Ransomware Gang “Unseizes” Website, Vows No Limits on Targets
December 20, 2023 at 10:21AM The BlackCat ransomware group, Alphv, faced law enforcement action, leading to website seizures and a decryption tool release. After losing control of their Tor-based site, they established a new leak website and vowed retaliation. The Justice Department seized BlackCat’s communication sites, impacting their affiliates. Security experts anticipate the group may…
-
3 Ways to Use Real-Time Intelligence to Defeat Bots
December 20, 2023 at 10:10AM The sci-fi film Blade Runner portrays a search for lifelike replicants, paralleling the digital realm where businesses confront human-like bots. These advanced bots pose cyber threats, challenging conventional security methods. Counteracting them demands dynamic solutions, including real-time feedback loops, understanding bot behavior, disrupting their feedback, and actionable intelligence to stay…
-
Targeted F5 Vulnerability ‘Update’ Delivers Wiper to Israeli Victims
December 20, 2023 at 10:10AM The Israel National Cyber Directorate issued an urgent warning about a targeted email campaign impersonating F5 Networks, delivering dangerous wiper malware. The attacker capitalized on a critical F5 BIG-IP vulnerability, sending emails from “[email protected]” with an attached file named “update.zip.” The malware can delete F5 servers but cannot spread laterally.…