HackDig : Dig high-quality web security articles

Cl0p ransomware gang claims first victims of the MOVEit vulnerability

On Friday June 2, 2023 we reported about a MOVEit Transfer vulnerability that was actively being exploited. If your organization uses MOVEit Transfer and you haven’t patched yet, it really is time to move it. Excuse the bad pun, but yesterday we saw the first victims of this vulnerability come forward. MOVEit Transfer is a widely used file transfer sof
Publish At:2023-06-06 22:03 | Read:50848 | Comments:0 | Tags:Exploits and vulnerabilities News Ransomware Progress MOVEit

Information stealer compromises legitimate sites to attack other sites

Security researchers at Akamai have published a blog about a new Magecart-alike web skimming campaign that uses compromised legitimate sites as command and control (C2) servers. A web skimmer is a piece of malicious code embedded in web payment pages to steal personally identifiable information (PII) and credit card details from customers of the site. S
Publish At:2023-06-05 22:03 | Read:38635 | Comments:0 | Tags:News

Vice Society: The #1 cyberthreat to schools, colleges, and universities

This article is based on research by Marcelo Rivero, Malwarebytes' ransomware specialist, who monitors information published by ransomware gangs on their Dark Web sites. In this report, "known attacks" are those where the victim didn't pay a ransom. This provides the best overall picture of ransomware activity, but the true number of attacks is far higher. A
Publish At:2023-06-05 22:03 | Read:48166 | Comments:0 | Tags:News Ransomware cyber

Update now! MOVEit Transfer vulnerability actively exploited

On May 31, 2023, Progress Software released a security bulletin about a critical vulnerability in MOVEit Transfer. The security bulletin states: “a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an un-authenticated attacker to gain unauthorized access to MOVEit Transfer's database. Depending on the da
Publish At:2023-06-02 22:03 | Read:179673 | Comments:0 | Tags:Exploits and vulnerabilities News Progress MOVEit vulnerabil

Amazon's Ring cameras were used to spy on customers

Every single Amazon Ring employee was able to access every single customer video, even when it wasn't necessary for their jobs.  Not only that, but the employees—along with workers from a third-party contractor in Ukraine—could also download any of those videos and then save and share them as they liked, before July 2017. That's what th
Publish At:2023-06-01 22:03 | Read:62464 | Comments:0 | Tags:News Personal

US hospital forced to divert ambulances after cyberattack

The Idaho Falls Community Hospital fell victim to a cyberattack on Monday May 29, 2023. As a result, the hospital had to divert ambulances to other nearby hospitals and close some of its clinics.  The hospital is keeping the public updated through its website and Facebook page. “Our commitment to our patients’ well-being cont
Publish At:2023-06-01 22:03 | Read:78385 | Comments:0 | Tags:News Ransomware Idaho hospital cyberattack virus ransomware

Microsoft gives Apple a migraine

On May 18, 2023, Apple published security content for macOS Ventura 13.4, macOS Monterey 12.6.6, and macOS Big Sur 11.7.7 that addressed a logic issue in libxpc. The Common Vulnerabilities and Exposures (CVE) database lists publicly disclosed computer security flaws. The CVE we are going to discuss is listed as CVE-2023-32369, which allows an app t
Publish At:2023-05-31 22:03 | Read:66417 | Comments:0 | Tags:Exploits and vulnerabilities News Apple macOS Ventura 13.4 M

Barracuda Networks patches zero-day vulnerability in Email Security Gateway

On May 20, Barracuda Networks issued a patch for a zero day vulnerability in its Email Security Gateway (ESG) appliance. The vulnerability existed in a module which initially screens the attachments of incoming emails, and was discovered on May 19. Barracuda's investigation showed that the vulnerability resulted in unauthorized access to a subset of ema
Publish At:2023-05-30 22:03 | Read:67637 | Comments:0 | Tags:Exploits and vulnerabilities News Vulnerability security

A week in security (May 22-28)

Last week on Malwarebytes Labs: Update now: 9 vulnerabilities impact Cisco Small Business Series ChatGPT: Cybersecurity friend or foe? Webinar recap: EDR vs MDR for business success Identity crisis: How an anti-porn crusade could jam the Internet, featuring Alec Muffett: Lock and Code S04E11 Malvertising via brand impersonation is back again Update now! App
Publish At:2023-05-29 22:03 | Read:71878 | Comments:0 | Tags:News Cisco Zyxel ChatGPT Malvertising Apple Google insider t

Zyxel patches two critical vulnerabilities

Zyxell has released a security advisory for multiple buffer overflow vulnerabilities. Exploitation of these vulnerabilities could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and even a remote code execution on the affected Zyxell firewalls. Affected users should patch as a matter of urgency, and we urge you not to expose the
Publish At:2023-05-26 22:03 | Read:115175 | Comments:0 | Tags:Exploits and vulnerabilities News

How to Set Up a Comprehensive Penetration Testing Program?

The global penetration testing market, projected to reach USD$2.7 billion by 2027 from USD$1.4 billion in 2022, shows how increasingly committed global businesses are to safeguarding their data and digital assets.  It begs the question, what has changed to drive this demand?  As remote or hybrid working environments emerge as the new normal,
Publish At:2023-05-26 12:44 | Read:128006 | Comments:0 | Tags:News Penetration Testing penetraton testing

CISA updates ransomware guidance

The Cybersecurity and Infrastructure Security Agency (CISA) has updated its #StopRansomware guide to account for the fact that ransomware actors have accelerated their tactics and techniques since the original guide was released in September of 2020. The #StopRansomware guide is set up as a one-stop resource to help organizations reduce the risk of ransomwar
Publish At:2023-05-24 22:03 | Read:90484 | Comments:0 | Tags:News Ransomware CISA StopRansomware guide ZTA compromised cl

Rheinmetall attacked by BlackBasta ransomware

On Friday May 19, 2023, the German arms producer Rheinmetall acknowledged a cyber-incident at one of it’s subsidiaries in the private sector. The BlackBasta ransomware group has already claimed responsibility for the attack through its leak-site. Entry for Rheinmetall on BlackBasta leak site Rheinmetall’s main activities are in the automobile i
Publish At:2023-05-24 22:03 | Read:79567 | Comments:0 | Tags:News Ransomware Rheinmetall BlackBasta ransomware

Update now! Apple issues patches for three actively used zero-days

Apple has rolled out security updates for Safari 16.5, watchOS 9.5, tvOS 16.5, iOS 16.5, iPadOS 16.5, iOS 15.7.6, iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Ventura 13.4, and macOS Monterey 12.6.6. Among the security updates were patches for three actively exploited zero-day vulnerabilities. All these actively exploited vulnerabilities are directly related t
Publish At:2023-05-24 17:53 | Read:132568 | Comments:0 | Tags:Exploits and vulnerabilities News Apple RSR CVE-2023-32409 C

Employee guilty of joining ransomware attack on his own company

A 28-year old IT Security Analyst pleaded guilty and will consequently be convicted of blackmail and unauthorized access to a computer with intent to commit other offences. It all started when the UK gene and cell therapy company Oxford BioMedica fell victim to a cybersecurity incident which involved unauthorized access to part of the company’s compute
Publish At:2023-05-24 17:53 | Read:142126 | Comments:0 | Tags:News Ransomware employee insider threat access control polic


Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud