Security News

Rackspace: Play Ransomware gang used a previously unknown exploit to access its Hosted Exchange email environment

Cloud services provider Rackspace confirmed that the recent data breach was the result of the Play Ransomware gang’s attack. Cloud services provider Rackspace announced this week that the recent data breach was the result of an attack conducted by the Play ransomware group. The ransomware attack took place on December 2, 2022, threat actors exploited a […]

The post Rackspace: Play Ransomware gang used a previously unknown exploit to access its Hosted Exchange email environment appeared first on Security Affairs.

January 6, 2023
0 comment
Read More >>

Data stolen after Hackers hit 14 UK schools

Hackers have launched a successful cyberattack against schools across the UK and has left confidential information related to pupils leaked online. In total, 14 schools have been impacted, with the sensitive data stolen including passport details, which were likely needed for trips abroad, as well as contracts and pay scales for members of staff. As […]

The post Data stolen after Hackers hit 14 UK schools appeared first on IT Security Guru.

January 6, 2023
0 comment
Read More >>

Bitdefender released a free decryptor for the MegaCortex ransomware

Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware allowing its victims to restore their data for free. Antivirus firm Bitdefender released a decryptor for the MegaCortex ransomware, which can allow victims of the group to restore their data for free. The MegaCortex ransomware first appeared on the threat landscape in May 2019 when […]

The post Bitdefender released a free decryptor for the MegaCortex ransomware appeared first on Security Affairs.

January 6, 2023
0 comment
Read More >>

Threat actors stole Slack private source code repositories

Enterprise collaboration platform Slack disclosed a data breach, hackers stole some of its private source code repositories. The enterprise collaboration platform Slack has announced to have suffered a security breach, threat actors have stolen some of its private source code repositories. The company pointed out that its customers were not affected. “We recently became aware […]

The post Threat actors stole Slack private source code repositories appeared first on Security Affairs.

January 6, 2023
0 comment
Read More >>

How hackers might be exploiting ChatGPT

The popular AI chatbot ChatGPT might be used by threat actors to hack easily hack into target networks. Original post at https://cybernews.com/security/hackers-exploit-chatgpt/ Cybernews research team discovered that the AI-based chatbot ChatGPT – a recently launched platform that caught the online community’s attention – could provide hackers with step-by-step instructions on how to hack websites. Cybernews […]

The post <strong>How hackers might be exploiting ChatGPT</strong> appeared first on Security Affairs.

January 5, 2023
0 comment
Read More >>

Critical flaws found in Ferrari, Mercedes, BMW, Porsche, and other carmakers

BMW, Mercedes, Toyota, and other popular carmakers use vulnerable APIs that could have allowed attackers to perform malicious activities. Cybersecurity researcher Sam Curry and his colleagues discovered many vulnerabilities in the vehicles manufactured by tens of carmakers and services implemented by vehicle solutions providers. The vulnerabilities could have been exploited by threat actors to perform […]

The post Critical flaws found in Ferrari, Mercedes, BMW, Porsche, and other carmakers appeared first on Security Affairs.

January 5, 2023
0 comment
Read More >>

Database of the Cricketsocial.com platform left open online

CyberNews reported that Cricketsocial.com, a social platform for the cricket community, exposed private customer data and admin credentials. Cricketsocial.com, is a social platform developed for the cricket community online. CyberNews discovered that a database used by the platform was left open online, it contains a huge trove of data. The Social platform for the cricket […]

The post Database of the Cricketsocial.com platform left open online appeared first on Security Affairs.

January 4, 2023
0 comment
Read More >>

Fortinet fixed multiple command injection bugs in FortiADC and FortiTester

Fortinet addressed multiple vulnerabilities impacting its products and warned of a high-severity command injection flaw in FortiADC. Cybersecurity vendor Fortinet addressed several vulnerabilities impacting its products. The compaby also warned customers of a high-severity command injection flaw, tracked as CVE-2022-39947 (CVSS score of 8.6), affecting the Application Delivery Controller FortiADC. The CVE-2022-39947 flaw is an […]

The post Fortinet fixed multiple command injection bugs in FortiADC and FortiTester appeared first on Security Affairs.

January 4, 2023
0 comment
Read More >>

New shc Linux Malware used to deploy CoinMiner

Researchers discovered a new Linux malware developed with the shell script compiler (shc) that was used to deliver a cryptocurrency miner. The ASEC analysis team recently discovered that a Linux malware developed with shell script compiler (shc) that threat actors used to install a CoinMiner. The experts believe attackers initially compromised targeted devices through a […]

The post New shc Linux Malware used to deploy CoinMiner appeared first on Security Affairs.

January 4, 2023
0 comment
Read More >>

US. rail and locomotive company Wabtec hit with Lockbit ransomware

US. rail and locomotive company Wabtec Corporation disclosed a data breach after it was hit with Lockbit ransomware attack. Wabtec Corporation is an American company formed by the merger of the Westinghouse Air Brake Company (WABCO) and MotivePower Industries Corporation in 1999. It manufactures products for locomotives, freight cars and passenger transit vehicles, and builds new locomotives up to 6,000 horsepower. The company employs […]

The post US. rail and locomotive company Wabtec hit with Lockbit ransomware appeared first on Security Affairs.

January 4, 2023
0 comment
Read More >>