information security news

Crooks use HTML smuggling to spread QBot malware via SVG files

Talos researchers uncovered a phishing campaign distributing the QBot malware to Windows systems using SVG files. Talos researchers uncovered a…

3 years ago

GoTrim botnet actively brute forces WordPress and OpenCart sites

Researchers discovered a new Go-based botnet, dubbed GoTrim, attempting to brute force WordPress websites. Fortinet FortiGuard Labs researchers spotted a…

3 years ago

December 2022 Patch Tuesday fixed 2 zero-day flaws

Microsoft released December 2022 Patch Tuesday security updates that fix 52 vulnerabilities across its products. Microsoft December 2022 Patch Tuesday security updates…

3 years ago

Apple fixed the tenth actively exploited zero-day this year

Apple rolled out security updates to iOS, iPadOS, macOS, tvOS, and Safari to fix a new actively exploited zero-day (CVE-2022-42856).…

3 years ago

Citrix and NSA urge admins to fix actively exploited zero-day in Citrix ADC and Gateway

Citrix urges customers to update their installs to fix actively exploited zero-day (CVE-2022-27518) in Citrix ADC and Gateway. Citrix urges…

3 years ago

Lockbit ransomware gang hacked California Department of Finance

LockBit ransomware gang hacked the California Department of Finance and threatens to leak data stolen from its systems. The LockBit…

3 years ago

Experts detailed a previously undetected VMware ESXi backdoor

A new Python backdoor is targeting VMware ESXi servers, allowing attackers to take over compromised systems. Juniper Networks researchers spotted…

3 years ago

Twitter says recently leaked user data are from 2021 breach

Twitter confirmed that the recent leak of members' profile information resulted from the 2021 data breach disclosed in August 2022.…

3 years ago

Fortinet urges customers to fix actively exploited FortiOS SSL-VPN bug

Fortinet fixed an actively exploited FortiOS SSL-VPN flaw that could allow a remote, unauthenticated attacker to execute arbitrary code on devices.…

3 years ago

Indian foreign ministry’s Global Pravasi Rishta portal leaks expat passport details

The Cybernews research team reported that India’s government platform Global Pravasi Rishta Portal was leaking sensitive user data. Original post…

3 years ago

This website uses cookies.