MOVEit: Ransomware Groups Exploit TeamCity, WS_FTP
Defending Against Cyber Threats: A Comprehensive Guide In an ever-evolving landscape of cyber threats, staying ahead of malicious actors is crucial. Recently, we’ve witnessed an alarming surge in ransomware attacks targeting MOVEit corporate networks. Ransomware groups have turned their attention to exploiting two critical vulnerabilities: CVE-2023-42793 and CVE-2023-40044. These vulnerabilities have left organizations vulnerable to […]
Chrome Vulnerability: How Extensions Can Lost Passwords
A team of academics from the University of Wisconsin-Madison has shone a light on a serious issue in the field of cybersecurity. They’ve released a proof-of-concept Chrome Vulnerability extension that can harvest plaintext passwords directly from a website’s source code, which is now available in the Chrome Web Store. This study has shown a gap […]
French Agency Data Breach: 10 Million People’s Affected.
Introduction In an alarming revelation, Pôle emploi, France’s governmental unemployment registration and financial aid agency, has recently brought to light a distressing data breach. This breach has led to the exposure of sensitive data belonging to a staggering 10 million individuals. The implications of this incident are far-reaching and demand immediate attention. This article delves […]
Critical Alert: Unveiling WinRAR Vulnerability CVE-2023-40477
Unveiling a Critical Security Flaw in WinRAR: CVE-2023-40477 Security researchers have discovered a high-severity security flaw in the widely used WinRAR application, possibly making Windows computers vulnerable to remote code execution. This security flaw tracked as CVE-2023-40477 and with a CVSS score of 7.8, originates from faulty validation during the processing of recovery volumes. Understanding […]
ALPHV Ransomware Targets Irish University
The notorious ALPHV ransomware group, also known as BlackCat, aims to intensify pressure on their targets for ransom payments by introducing an API for their leak site, thereby amplifying the visibility of their attacks. This strategic move comes on the heels of their recent breach of Estée Lauder, where the beauty company boldly dismissed the […]
A Comprehensive Guide to CVE-2022-30190 (Follina)
Introduction In today’s ever-changing digital landscape, cybersecurity is a top priority for businesses, organizations, and individuals alike. Among the various issues, two serious vulnerabilities, CVE-2021-40444 and CVE-2022-30190, commonly known as Follina, have lately attracted the attention of the cybersecurity community. Understanding CVE-2021-40444 CVE-2021-40444 attacks Microsoft Office products, posing a serious security risk to consumers. The […]
VMware Exploited Attacks Target vRealize Flaw
VMware revised a two-week-old security advisory to alert customers that a now-patched serious vulnerability permitting remote code execution is being actively exploited in attacks. “VMware has confirmed that CVE-2023-20887 has been exploited in the wild,” the company said today. This notification comes after several warnings from cybersecurity firm GreyNoise, the first of which was given one […]
Exploit Zero-Day target NATO summit attacks
Zero-Day Target NATO Summit Microsoft disclosed today a zero-day security bug in multiple Windows and Office products exploited in the wild to gain remote code execution via malicious Office documents In this article, we will discuss a critical security flaw that has recently been disclosed by Microsoft. This zero-day vulnerability, tracked as CVE-2023-36884, affects multiple […]
Siemens Energy confirms data breach after MOVEit data-theft attack
Siemens Energy, a Munich-based energy technology company, has confirmed that data was stolen in a recent cyberattack. The attack utilized the Clop ransomware and exploited a zero-day vulnerability in the MOVEit Transfer platform. Siemens Energy is a global company with a significant presence in the energy sector. It employs around 91,000 people and generates an […]
Major Vulnerability in Google’s Cloud SQL Service Exposes Sensitive Information
A newly discovered security hole in the Cloud SQL service on Google Cloud Platform (GCP) allows hackers to exploit and steal sensitive information. The vulnerability allowed a malicious actor to escalate from a basic Cloud SQL user to a full-fledged sysadmin on a container. According to the firm Dig, this allowed unauthorized access to internal […]