Exploit for critical Fortra FileCatalyst Workflow SQLi flaw released

June 26, 2024 at 01:04PM Fortra FileCatalyst Workflow has a critical SQL injection vulnerability (CVE-2024-5276) discovered by Tenable researchers. It allows remote unauthenticated attackers to create rogue admin users and manipulate data on the application database. Exploitation requires enabled anonymous access on the target instance. A public exploit is available, and fixes are provided in … Read more

Microsoft blamed for million-plus patient record theft at US hospital giant

June 25, 2024 at 08:49PM Geisinger, a healthcare provider, suspects a former Nuance Communications employee, now arrested and facing federal charges, of stealing highly personal data on over a million of its patients. Nuance failed to revoke the ex-employee’s access to corporate files post-termination, leading to the security breach. However, it was undisclosed if charges … Read more

Fresh MOVEit Bug Under Attack Mere Hours After Disclosure

June 25, 2024 at 05:59PM A critical security flaw in Progress Software’s MOVEit Transfer enables attackers to bypass authentication protocols and has been actively exploited shortly after being disclosed. The vulnerability, CVE-2024-5806 with CVSS 7.4, affects specific versions of MOVEit Transfer. Urgent patching is recommended due to the potential for cybercriminal exploitation and compromise of … Read more

Ollama drama as ‘easy-to-exploit’ critical flaw found in open source AI server

June 24, 2024 at 04:43PM A critical vulnerability, dubbed Probllama (CVE-2024-37032), in the Ollama project for running LLMs allows remote code execution. The flaw, fixed in version 0.1.34, impacts over 1,000 exposed instances. Wiz Research urges timely updating and implementing strong authentication measures, emphasizing the risk associated with unpatched instances. This underscores the need for … Read more

CoinStats says North Korean hackers breached 1,590 crypto wallets

June 24, 2024 at 11:03AM CoinStats experienced a serious security breach affecting 1,590 cryptocurrency wallets, believed to be orchestrated by North Korean threat actors. The platform, used by 1.5 million users for investment tracking and real-time data, had its website and app disabled during the investigation. Users are advised to transfer their funds from affected … Read more

Check Point Warns of Zero-Day Attacks on its VPN Gateway Products

May 29, 2024 at 11:40AM Check Point warns of zero-day vulnerability in Network Security gateway products, exploited by threat actors. Tracked as CVE-2024-24919, it affects various products. Attackers could read certain information on Internet-connected Gateways with remote access VPN or mobile access enabled. Hotfixes are available for impacted versions. Recent attacks targeted VPN devices to … Read more

American Radio Relay League cyberattack takes Logbook of the World offline

May 19, 2024 at 05:19PM The American Radio Relay League (ARRL) experienced a cyberattack disrupting its IT systems, including email and the Logbook of the World online service. The national association for amateur radio in the US represents radio interests, provides technical advice, and organizes events and educational programs. Member database containing private information was … Read more

Apple and Google add alerts for unknown Bluetooth trackers to iOS, Android

May 14, 2024 at 11:12AM Apple and Google jointly announced a new privacy feature, “Detecting Unwanted Location Trackers,” for Android and iOS users. The feature alerts users when an unknown Bluetooth tracking device is travelling with them, with a joint industry specification for such devices. Users can receive alerts and take action to disable the … Read more

Uncle Sam urges action after Black Basta ransomware infects Ascension

May 13, 2024 at 02:37PM Several US security agencies have issued advisories on the Black Basta ransomware gang, responsible for a recent attack on US healthcare provider Ascension. The group has targeted organizations across critical infrastructure sectors, including healthcare. Affected organizations are urged to apply recommended mitigations and report incidents to law enforcement. Ascension is … Read more

Cybercriminals pose as LastPass staff to hack password vaults

April 18, 2024 at 11:00AM LastPass warns of a malicious campaign targeting users with the CryptoChameleon phishing kit, tied to cryptocurrency theft and combining social engineering tactics. The kit previously targeted FCC employees and cryptocurrency platforms, impersonating various services. LastPass discovered its inclusion in the phishing kit and urges vigilance against suspicious communications, advising not … Read more