Security News

Ransomware attacks escalate as critical sectors struggle to keep up

2024-09-04 03:00

Ransomware remains a concerning cybersecurity threat, with attacks becoming more frequent, severe, and costly. Recent reports highlight alarming trends, including increased attacks on critical...

#attack #critical #ransomware

Zyxel warns of critical OS command injection flaw in routers

2024-09-03 19:59

Zyxel has released security updates to address a critical vulnerability impacting multiple models of its business routers, potentially allowing unauthenticated attackers to perform OS command...

#commandinjection #critical #router #zyxel

Critical flaw in Zyxel’s secure routers allows OS command execution via cookie (CVE-2024-7261)

2024-09-03 12:47

Zyxel has patched a myriad of vulnerabilities in its various networking devices, including a critical one (CVE-2024-7261) that may allow unauthenticated attackers to execute OS commands on many...

#critical #CVE #router #zyxel #CVE-2024-7261

RansomHub Ransomware Group Targets 210 Victims Across Critical Sectors

2024-09-02 13:33

Threat actors linked to the RansomHub ransomware group encrypted and exfiltrated data from at least 210 victims since its inception in February 2024, the U.S. government said. The victims span...

#critical #ransomware

Week in review: SonicWall critical firewalls flaw fixed, APT exploits WPS Office for Windows RCE

2024-09-01 08:00

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: SonicWall patches critical flaw affecting its firewalls (CVE-2024-40766) SonicWall has patched a...

#APT #critical #exploit #firewall #office #RCE #sonicwall #windows #CVE-2024-40766

SANS Institute Unveils Critical Infrastructure Strategy Guide for 2024: A Call to Action for Securing ICS/OT Environments

2024-08-30 06:19

A comprehensive guide authored by Dean Parsons emphasizes the growing need for specialized ICS security measures in the face of rising cyber threats. With a staggering 50% increase in ransomware...

#critical #ICS #infrastructure #OT #sans #sansinstitute

Proof-of-concept code released for zero-click critical IPv6 Windows hole

2024-08-28 21:20

If you haven't deployed August's patches, get busy before others do Windows users who haven't yet installed the latest fixes to their operating systems will need to get a move on, as code now...

#critical #ipv6 #windows

Fortra fixes critical FileCatalyst Workflow hardcoded password issue

2024-08-28 16:59

Fortra is warning of a critical hardcoded password flaw in FileCatalyst Workflow that could allow attackers unauthorized access to an internal database to steal data and gain administrator...

#critical #fortra

Critical Fortra FileCatalyst Workflow vulnerability patched (CVE-2024-6633)

2024-08-28 08:46

Organizations using Fortra’s FileCatalyst Workflow are urged to upgrade their instances, so that attackers can’t access an internal HSQL database by exploiting known static credentials...

#critical #CVE #fortra #vulnerability #CVE-2024-6633

CISA Flags Critical Apache OFBiz Flaw Amid Active Exploitation Reports

2024-08-28 06:50

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw affecting the Apache OFBiz open-source enterprise resource planning (ERP) system to its...

#apache #cisa #critical #exploitation #report #CVE-2024-38856

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News