700K+ DrayTek routers are sitting ducks on the internet, open to remote hijacking

October 2, 2024 at 05:38PM Multiple critical vulnerabilities in DrayTek routers, including a perfect 10 out of 10 CVSS severity rating, pose security risks for over 785,000 devices. Attackers could exploit these flaws to gain control, steal data, deploy ransomware, and launch denial-of-service attacks. It’s imperative for users to apply patches, employ best practices, and … Read more

Hessen Consumer Center says systems encrypted by ransomware

February 27, 2024 at 12:13PM Hessen Consumer Center in Germany suffered a ransomware attack, causing disruptions to its services. The organization provides consumer law advice to Hesse residents. Communication channels have been restored, but people still face challenges reaching consumer advocates. Data breach concerns are being addressed, and authorities are involved in the investigation. No … Read more

Patch Now: Attackers Pummel Critical, Easy-to-Exploit OwnCloud Flaw

November 29, 2023 at 02:38PM Hackers exploit a critical vulnerability in ownCloud, tracked as CVE-2023-49103, compromising admin passwords and sensitive data. With a CVSS score of 10/10, it affects versions 0.2.0 to 0.3.0. Over 11,000 instances are exposed, mostly in Germany, the US, France, and Russia. Patching is vital; disabling the app isn’t enough. Two … Read more

US cybercops urge admins to patch amid ongoing Confluence chaos

October 17, 2023 at 09:06AM US authorities have urged network admins to patch a critical vulnerability in Atlassian Confluence Data Center and Server due to ongoing nation-state exploitation. The potential consequences of the exploit are severe, as attackers could create new admin accounts for themselves. The attackers have already demonstrated sophistication by attempting to modify … Read more