Recent Security News
-
Zero-Day Flaw in Zimbra Email Software Exploited by Four Hacker Groups
November 16, 2023 at 11:48AM A zero-day flaw in the Zimbra Collaboration email software was exploited by four different groups, resulting in the theft of email data, user credentials, and authentication tokens. The flaw, tracked as CVE-2023-37580, allowed the execution of malicious scripts by tricking users into clicking on a specially crafted URL. The attacks…
-
Despite Hype, the Password-Free Workplace Is Still a Long Way Off
November 16, 2023 at 11:45AM Passwords are still relevant in the workplace, despite the security risks they pose. A survey by Delinea found that 53% of respondents acknowledged the slow transition towards passwordless technology. The majority of organizations are still years away from eliminating passwords entirely. Weak password hygiene continues to expose enterprise systems to…
-
Biden Campaign Looking for CISO
November 16, 2023 at 11:45AM The Biden for President campaign is hiring a Chief Information Security Officer (CISO) to oversee its IT and security division. The CISO will be responsible for defining the organization’s risk appetite, leading cybersecurity initiatives, managing incident response programs, and ensuring high cybersecurity standards with third-party vendors. Based on the meeting…
-
Zimbra Zero-Day Exploited to Hack Government Emails
November 16, 2023 at 11:45AM Google’s Threat Analysis Group (TAG) has disclosed that a zero-day exploit in Zimbra Collaboration Suite was used to steal email data from government organizations worldwide. The vulnerability (CVE-2023-37580) was made public in July, and it allows attackers to execute malicious code through specially crafted URLs sent via email. Google observed…
-
State-Sponsored Online Spies Likely to Target Australian Submarine Program, Spy Agency Says
November 16, 2023 at 11:45AM Australia’s digital spy agency, the Australian Signals Directorate, has warned that the country’s collaboration with the US and UK to develop nuclear-powered submarines may be targeted by state-sponsored cyber espionage. The agency reported a 23% increase in cybercrimes in Australia, with China identified as a major actor. The report suggests…