Security

Security News

18 January 2023

Ransomware Attack on DNV Ship Management Software Impacts 1,000 Vessels

17 January 2023

PyPI Users Targeted With 'Wacatac' Trojan in New Supply Chain Attack

Fortinet warns of three new malicious PyPI packages containing code designed to fetch the Wacatac trojan and information stealer as a next stage payload.

17 January 2023

Azure Services SSRF Vulnerabilities Exposed Internal Endpoints, Sensitive Data

Cloud security company Orca has published details on four server-side request forgery (SSRF) vulnerabilities impacting different Azure services, including two bugs that could have been exploited without authentication.

17 January 2023

Bill Would Force Period Tracking Apps to Follow Privacy Laws

When the Supreme Court last June stripped away constitutional protections for abortion, concerns grew over the use of period tracking apps because they aren't protected by federal privacy laws.

16 January 2023

Researchers: Brace for Zoho ManageEngine 'Spray and Pray' Attacks

Security researchers tracking a known pre-authentication remote code execution vulnerability in Zoho's ManageEngine products are warning organizations to brace for “spray and pray” attacks across the internet.

17 January 2023

Attackers Can Abuse GitHub Codespaces for Malware Delivery

A GitHub Codespaces feature meant to help with code development and collaboration can be abused for malware delivery, Trend Micro reports.

17 January 2023

Free Decryptors Released for BianLian, MegaCortex Ransomware

Avast and Bitdefender have released decryptors to help victims of BianLian and MegaCortex ransomware recover their data for free.

16 January 2023

Website of Canadian Liquor Distributor LCBO Infected With Web Skimmer

Canadian liquor distributor Liquor Control Board of Ontario (LCBO) has announced that a web skimmer injected into its online store was used to steal users' personal data.

Page 5 of 2215

Security News

Ransomware Attack on DNV Ship Management Software Impacts 1,000 Vessels

PyPI Users Targeted With 'Wacatac' Trojan in New Supply Chain Attack

Fortinet warns of three new malicious PyPI packages containing code designed to fetch the Wacatac trojan and information stealer as a next stage payload.

Azure Services SSRF Vulnerabilities Exposed Internal Endpoints, Sensitive Data

Cloud security company Orca has published details on four server-side request forgery (SSRF) vulnerabilities impacting different Azure services, including two bugs that could have been exploited without authentication.

Bill Would Force Period Tracking Apps to Follow Privacy Laws

When the Supreme Court last June stripped away constitutional protections for abortion, concerns grew over the use of period tracking apps because they aren't protected by federal privacy laws.

Researchers: Brace for Zoho ManageEngine 'Spray and Pray' Attacks

Security researchers tracking a known pre-authentication remote code execution vulnerability in Zoho's ManageEngine products are warning organizations to brace for “spray and pray” attacks across the internet.

Attackers Can Abuse GitHub Codespaces for Malware Delivery

A GitHub Codespaces feature meant to help with code development and collaboration can be abused for malware delivery, Trend Micro reports.

Free Decryptors Released for BianLian, MegaCortex Ransomware

Avast and Bitdefender have released decryptors to help victims of BianLian and MegaCortex ransomware recover their data for free.

Website of Canadian Liquor Distributor LCBO Infected With Web Skimmer

Canadian liquor distributor Liquor Control Board of Ontario (LCBO) has announced that a web skimmer injected into its online store was used to steal users' personal data.

Meet

Resources

More About Us