Security News

Experts released PoC exploit for MOVEit Transfer CVE-2023-34362 flaw

Security firm Horizon3 released proof-of-concept (PoC) exploit code for the remote code execution (RCE) flaw CVE-2023-34362 in the MOVEit Transfer MFT. MOVEit Transfer is a managed file transfer that is used by enterprises to securely transfer files using SFTP, SCP, and HTTP-based uploads. The vulnerability is a SQL injection vulnerability, it can be exploited by […]

The post Experts released PoC exploit for MOVEit Transfer CVE-2023-34362 flaw appeared first on Security Affairs.

June 13, 2023
0 comment
Read More >>

Intellihartx data breach exposed the personal and health info of 490,000 individuals

Intellihartx is notifying about 490,000 individuals that their personal information was compromised in the GoAnywhere zero-day attack in January. The Clop ransomware group has stolen stole personal and health information of 489,830 individuals as a result of a ransomware attack on the technology firm Intellihartx. The attack took place earlier this year, the attackers have […]

The post Intellihartx data breach exposed the personal and health info of 490,000 individuals appeared first on Security Affairs.

June 12, 2023
0 comment
Read More >>

FUD Malware obfuscation engine BatCloak continues to evolve

Researchers detailed a fully undetectable (FUD) malware obfuscation engine named BatCloak that is used by threat actors. Researchers from Trend Micro have analyzed the BatCloak, a fully undetectable (FUD) malware obfuscation engine used by threat actors to stealthily deliver their malware since September 2022. The samples analyzed by the experts demonstrated a remarkable ability to persistently evade […]

The post FUD Malware obfuscation engine BatCloak continues to evolve appeared first on Security Affairs.

June 12, 2023
0 comment
Read More >>

Fortinet urges to patch a critical RCE flaw in Fortigate firewalls

Fortinet released security updates to fix a critical security flaw in its FortiGate firewalls that lead to remote code execution. Fortinet has released security patches to address a critical security vulnerability, tracked as CVE-2023-27997, in its FortiGate firewalls. An attacker can exploit the vulnerability to achieve remote code execution on vulnerable network equipment. The vulnerability was […]

The post Fortinet urges to patch a critical RCE flaw in Fortigate firewalls appeared first on Security Affairs.

June 12, 2023
0 comment
Read More >>

Xplain data breach also impacted the national Swiss railway FSS

The Play ransomware attack suffered by the IT services provider Xplain also impacted the national railway company of Switzerland (FSS) and the canton of Aargau. The Play ransomware attack suffered by the IT services provider Xplain is worse than initially estimated, the incident also impacted the national railway company of Switzerland (FSS) and the canton […]

The post Xplain data breach also impacted the national Swiss railway FSS appeared first on Security Affairs.

June 12, 2023
0 comment
Read More >>

Microsoft warns of multi-stage AiTM phishing and BEC attacks

Microsoft researchers warn of banking adversary-in-the-middle (AitM) phishing and BEC attacks targeting banking and financial organizations. Microsoft discovered multi-stage adversary-in-the-middle (AiTM) phishing and business email compromise (BEC) attacks against banking and financial services organizations. In AiTM phishing, threat actors set up a proxy server between a target user and the website the user wishes to […]

The post Microsoft warns of multi-stage AiTM phishing and BEC attacks appeared first on Security Affairs.

June 11, 2023
0 comment
Read More >>

Pro-Ukraine Cyber Anarchy Squad claims the hack of the Russian telecom provider Infotel JSC

Pro-Ukraine hackers Cyber Anarchy Squad claimed responsibility for the attack that hit Russian telecom provider Infotel JSC. Pro-Ukraine hacking group Cyber.Anarchy.Squad claimed responsibility for an attack on Russian telecom provider Infotel JSC. The company provides connectivity services to the Russian banking system, for this reason, the attack had a severe impact on the operations of […]

The post Pro-Ukraine Cyber Anarchy Squad claims the hack of the Russian telecom provider Infotel JSC appeared first on Security Affairs.

June 11, 2023
0 comment
Read More >>

Experts found new MOVEit Transfer SQL Injection flaws

Progress Software released security updates to fix several new SQL injection vulnerabilities in the MOVEit Transfer application. Progress Software has released security updates to address new SQL injection vulnerabilities in the MOVEit Transfer application. An attacker can exploit the SQL injection vulnerabilities in the MOVEit Transfer solution to steal sensitive information. “SQL Injection (CVE pending […]

The post Experts found new MOVEit Transfer SQL Injection flaws appeared first on Security Affairs.

June 10, 2023
0 comment
Read More >>

The University of Manchester suffered a cyber attack and suspects a data breach

The University of Manchester suffered a cyberattack, attackers likely stole staff and students’ data from its systems. The University of Manchester, one of the UK’s largest educational institutions, suffered a cyberattack, The popular university suspects that the threat actors have stolen data from its systems. The University of Manchester has about 11,000 staff and more […]

The post The University of Manchester suffered a cyber attack and suspects a data breach appeared first on Security Affairs.

June 10, 2023
0 comment
Read More >>

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Two Russian nationals have been charged with the hack of the cryptocurrency exchange Mt. Gox in 2011 and money laundering. Russian nationals Alexey Bilyuchenko (43) and Aleksandr Verner (29) have been charged with the hack of the cryptocurrency exchange Mt. Gox in 2011 and the operation of the illicit cryptocurrency exchange BTC-e. The duo has […]

The post Russians charged with hacking Mt. Gox exchange and operating BTC-e appeared first on Security Affairs.

June 10, 2023
0 comment
Read More >>