Category: Uncategorized
-
Personal and Chemical Facility Information Potentially Accessed in CISA Hack Ionut Arghire
CISA says CFATS program data was likely accessed after an Ivanti Connect Secure appliance was hacked in January. The post Personal and Chemical Facility Information Potentially Accessed in CISA Hack appeared first on SecurityWeek. Read More
-

Oyster Backdoor Spreading via Trojanized Popular Software Downloads [email protected] (The Hacker News)
A malvertising campaign is leveraging trojanized installers for popular software such as Google Chrome and Microsoft Teams to drop a backdoor called Oyster (aka Broomstick and CleanUpLoader). That’s according to findings from Rapid7, which identified lookalike websites hosting the malicious payloads that users are redirected to after searching for them on search engines like Google…
-
US Bans Kaspersky Software Eduard Kovacs
The US government has announced a ban on the sale of Kaspersky software over fears that the company is controlled by the Russian government. The post US Bans Kaspersky Software appeared first on SecurityWeek. Read More
-

SolarWinds Serv-U Vulnerability Under Active Attack – Patch Immediately [email protected] (The Hacker News)
A recently patched high-severity flaw impacting SolarWinds Serv-U file transfer software is being actively exploited by malicious actors in the wild. The vulnerability, tracked as CVE-2024-28995 (CVSS score: 8.6), concerns a directory transversal bug that could allow attackers to read sensitive files on the host machine. Affecting all versions of the software prior to and…
-
Disruptions at Many Car Dealerships Continue as CDK Hack Worsens Eduard Kovacs
Car dealership software provider CDK Global was in the process of restoring services impacted by a cyberattack when it discovered an additional hack. The post Disruptions at Many Car Dealerships Continue as CDK Hack Worsens appeared first on SecurityWeek. Read More
-

U.S. Bans Kaspersky Software, Citing National Security Risks [email protected] (The Hacker News)
The U.S. Department of Commerce’s Bureau of Industry and Security (BIS) on Thursday announced a “first of its kind” ban that prohibits Kaspersky Lab’s U.S. subsidiary from directly or indirectly offering its security software in the country. The blockade also extends to the cybersecurity company’s affiliates, subsidiaries and parent companies, the department said, adding the…
-
Change Healthcare to Start Notifying Customers Who Had Data Exposed in Cyberattack Associated Press
Change Healthcare is starting to notify hospitals, insurers and other customers that they may have had patient information exposed in a massive cyberattack. The post Change Healthcare to Start Notifying Customers Who Had Data Exposed in Cyberattack appeared first on SecurityWeek. Read More
-
Long-Running Chinese Espionage Campaign Targets Telecom Firms in Asian Country Ionut Arghire
A years-long espionage campaign has targeted telecoms companies in Asia with tools associated with Chinese groups. The post Long-Running Chinese Espionage Campaign Targets Telecom Firms in Asian Country appeared first on SecurityWeek. Read More
-
OpenAI Co-Founder Sutskever Sets up New AI Company Devoted to ‘Safe Superintelligence’ Associated Press
Ilya Sutskever’s new company is focused on safely developing “superintelligence” – a reference to AI systems that are smarter than humans. The post OpenAI Co-Founder Sutskever Sets up New AI Company Devoted to ‘Safe Superintelligence’ appeared first on SecurityWeek. Read More
-

Researchers Uncover UEFI Vulnerability Affecting Multiple Intel CPUs [email protected] (The Hacker News)
Cybersecurity researchers have disclosed details of a now-patched security flaw in Phoenix SecureCore UEFI firmware that affects multiple families of Intel Core desktop and mobile processors. Tracked as CVE-2024-0762 (CVSS score: 7.5), the “UEFIcanhazbufferoverflow” vulnerability has been described as a case of a buffer overflow stemming from the use of an unsafe variable in the…
