breaking news

Security Affairs newsletter Round 402 by Pierluigi Paganini

GlobalDefenseBot
2 minutes

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Most internet-exposed Cacti servers exposed to hacking French CNIL fined Tiktok $5.4 Million for violating cookie […]

The post Security Affairs newsletter Round 402 by Pierluigi Paganini appeared first on Security Affairs.

ChatGPT Aiding Data Theft Through Developing Malicious Code

CySecBot
1 minute

It is the nature of newfound technologies to develop unforeseen consequences of the latest innovation. Such is the case with ChatGPT (Generative Pre-trained Transformer). The program has gained popularity with its realistic and sometimes disturbingly a…

breaking news

LockBit ransomware operation behind the Royal Mail cyberattack

GlobalDefenseBot
3 minutes

The cyberattack on Royal Mail, Britain’s postal service, is a ransomware attack that was linked to the LockBit ransomware operation. Royal Mail, the British multinational postal service and courier company, this week announced that a “cyber incident” has a severe impact on its operation. The incident only impacted Royal Mail’s international export services, the company said it is temporarily […]

The post LockBit ransomware operation behind the Royal Mail cyberattack appeared first on Security Affairs.

breaking news

Threat actors target govt networks exploiting Fortinet SSL-VPN CVE-2022-42475 bug

GlobalDefenseBot
4 minutes

Recently patched Fortinet FortiOS SSL-VPN zero-day exploited in attacks against government organizations and government-related targets. Fortinet researchers reported that threat actors exploited the recently patched FortiOS SSL-VPN vulnerability (CVE-2022-42475) in attacks against government organizations and government-related targets. In December, the security vendor urged its customers to update their installs to address an actively exploited FortiOS SSL-VPN […]

The post Threat actors target govt networks exploiting Fortinet SSL-VPN CVE-2022-42475 bug appeared first on Security Affairs.

Tesla Returns as Pwn2Own Hacker Takeover Target

CySecBot
1 minute

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to complete vehicle compromise.
read more

breaking news

Gootkit Loader campaign targets Australian Healthcare Industry

GlobalDefenseBot
3 minutes

Threat actors are targeting organizations in the Australian healthcare sector with the Gootkit malware loader. Trend Micro researchers warn that Gootkit Loader is actively targeting the Australian healthcare industry. The experts analyzed a series of attacks and discovered that Gootkit leveraged SEO poisoning for its initial access and abused legitimate tools like VLC Media Player. […]

The post Gootkit Loader campaign targets Australian Healthcare Industry appeared first on Security Affairs.

Investors Bet Big on Subscription-Based Security Skills Training

CySecBot
1 minute

Hack The Box, a British startup working on technology to simplify cybersecurity skills training, has banked a $55 million funding round as venture capital investors place big bets on the subscription-based talent assessment space.
read more

Espionage Meets Color: Dark Pink APT Group Revealed

CySecBot
1 minute

By Habiba Rashid
The Dark Pink APT group has been targeting countries in the APAC region.
This is a post from HackRead.com Read the original post: Espionage Meets Color: Dark Pink APT Group Revealed

breaking news

US CISA adds MS Exchange bug CVE-2022-41080 to its Known Exploited Vulnerabilities Catalog

GlobalDefenseBot
2 minutes

US CISA added Microsoft Exchange elevation of privileges bug CVE-2022-41080 to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog. The first issue, tracked as CVE-2022-41080, is a Microsoft Exchange server privilege escalation vulnerability. The issue can be chained with CVE-2022-41082 (ProxyNotShell) to […]

The post US CISA adds MS Exchange bug CVE-2022-41080 to its Known Exploited Vulnerabilities Catalog appeared first on Security Affairs.