Security News

3,000 Apache ActiveMQ servers vulnerable to RCE attacks exposed online
2023-11-01 18:05

Over three thousand internet-exposed Apache ActiveMQ servers are vulnerable to a recently disclosed critical remote code execution vulnerability. Apache ActiveMQ is a scalable open-source message broker that fosters communication between clients and servers, supporting Java and various cross-language clients and many protocols, including AMQP, MQTT, OpenWire, and STOMP. Thanks to the project's support for a diverse set of secure authentication and authorization mechanisms, it is widely used in enterprise environments where systems communicate without direct connectivity.

King Charles III signs off on UK Online Safety Act, with unenforceable spying clause
2023-10-27 09:51

With the assent of King Charles, the United Kingdom's Online Safety Act has become law, one that the British government says will "Make the UK the safest place in the world to be online." The Online Safety Act, which began in April 2019 as the Online Harms White Paper when Theresa May served as Prime Minister and was passed by Parliament in September, aims to tame the internet.

34 Cybercriminals Arrested in Spain for Multi-Million Dollar Online Scams
2023-10-24 11:00

Spanish law enforcement officials have announced the arrest of 34 members of a criminal group that carried out various online scams, netting the gang about €3 million ($3.2 million) in illegal...

Exchange Online mail delivery issues caused by anti-spam rules
2023-10-11 16:10

Microsoft is investigating Exchange Online mail delivery issues causing "Server busy" errors and delays when receiving emails from outside organizations. According to user reports online, the Exchange Online problems started this morning, affecting Microsoft 365 customers worldwide, across the Americas, Europe, and Asia.

New Report: Child Sexual Abuse Content and Online Risks to Children on the Rise
2023-10-10 10:28

Certain online risks to children are on the rise, according to a recent report from Thorn, a technology nonprofit whose mission is to build technology to defend children from sexual abuse....

Hackers modify online stores’ 404 pages to steal credit cards
2023-10-09 17:59

A new Magecart card skimming campaign hijacks the 404 error pages of online retailer's websites, hiding malicious code to steal customers' credit card information. All websites feature 404 error pages that are displayed to visitors when accessing a webpage that does not exist, has been moved, or has a dead/broken link.

Incentivizing secure online behavior across generations
2023-10-09 04:00

As the landscape of online security continues to evolve, there is a noticeable shift in people's perceptions of cybersecurity, with an increasing awareness of its vital role in staying safe online, according to a survey conducted by the National Cybersecurity Alliance and CybSafe. "Additionally, the perception of high costs associated with online protection from our findings highlights the importance of showcasing and delivering affordable cybersecurity solutions accessible for everyone," Alashe added.

Researchers warn of 100,000 industrial control systems exposed online
2023-10-04 17:35

About 100,000 industrial control systems were found on the public web, exposed to attackers probing them for vulnerabilities and at risk of unauthorized access. Among them are power grids, traffic light systems, security and water systems.

Silent Skimmer: A Year-Long Web Skimming Campaign Targeting Online Payment Businesses
2023-10-02 11:20

A financially motivated campaign has been targeting online payment businesses in the Asia Pacific, North America, and Latin America with web skimmers for more than a year. The BlackBerry Research...

Online fraud can cost you more than money
2023-10-02 03:00

Online fraud is a pervasive and constantly evolving threat that affects individuals and organizations worldwide. In this Help Net Security round-up, cybersecurity experts talk about online fraud and damaging effects it has on individuals and organizations.