July 4, 2024 at 06:37AM Microsoft has disclosed two security vulnerabilities in Rockwell Automation PanelView Plus, which could be exploited by remote attackers for remote code execution and denial-of-service (DoS) attacks. These flaws are tracked as CVE-2023-2071 and CVE-2023-29464, impacting FactoryTalk View Machine Edition and FactoryTalk Linx. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) … Read more
June 14, 2024 at 07:42AM The French government has offered €700 million for crucial assets of troubled IT services company Atos, as part of a restructuring plan. These assets include Advanced Computing, Mission-Critical Systems, and Cybersecurity activities, which have significant involvement in French military and state projects. Atos is evaluating the proposal and is also … Read more
June 13, 2024 at 01:25PM A proof-of-concept exploit for Veeam Recovery Orchestrator vulnerability tracked as CVE-2024-29855 has been released by security researcher Sina Kheirkha. The exploit allows unauthenticated access to the web UI with administrative privileges due to a hardcoded JWT secret. Veeam’s security bulletin suggests upgrading to patched versions and provides conditions required to … Read more
April 4, 2024 at 01:27PM Hoya Corporation, a global optics manufacturer, faced a “system failure” leading to server downtime at various plants. With 37,000 employees across 160 sites and in over 30 countries, they prioritize system restoration. A third-party security breach is suspected, impacting production and order systems. Investigations continue to analyze the extent and … Read more
March 20, 2024 at 08:57AM Government agencies in the US, UK, Canada, Australia, and New Zealand are warning critical infrastructure entities of the threat posed by Chinese state-sponsored group, Volt Typhoon. Following a February advisory, the agencies are offering guidance on defending against the group’s advanced persistent threat (APT) activities, emphasizing cybersecurity, supply chain security, … Read more
March 5, 2024 at 12:04PM North Korean threat actors have exploited ConnectWise ScreenConnect’s security flaws to launch TODDLERSHARK malware, overlapping with known Kimsuky malware BabyShark and ReconShark. Exploiting exposed setup wizard, threat actors execute VB-based malware, gaining ‘hands on keyboard’ access. Toddlershark exhibits polymorphic behavior and is used for reconnaissance. NIS accuses North Korea of … Read more
February 21, 2024 at 09:15AM The National Crime Agency revealed that nearly 200 “affiliates” were registered by the LockBit ransomware group over two years. The NCA took control of LockBit’s site, publicizing data revealing affiliates and exposing the StealBit tool. International efforts brought down the affiliate infrastructure, with the NCA warning against future misuse of … Read more
November 15, 2023 at 11:11AM The encryption algorithms used to secure emergency radio communications will be released to the public domain, after vulnerabilities were found in TETRA. The decision to go public is a complete turn from ETSI, which initially denied vulnerabilities. The algorithms will be open to academic research for independent reviews. No date … Read more
November 1, 2023 at 07:09AM A former British cyberespionage employee, Joshua Bowles, was sentenced to life in prison for the attempted murder of an American intelligence worker. Bowles carried out a pre-meditated and politically motivated attack, targeting the woman solely because of her role with the National Security Agency. The attack was driven by Bowles’ … Read more
October 29, 2023 at 08:00PM Austrian police have arrested 20 people involved in an illegal IPTV network that decrypted copyright-protected broadcasts and distributed them to customers. The investigation started in Germany and uncovered a criminal enterprise comprising 80 Turkish citizens. The network operated through suppliers and resellers, with customers being reached primarily via word of … Read more