Details have emerged about a vulnerability impacting the “wall” command of the util-linux package that could be potentially exploited by a bad actor to leak a user’s password or alter the clipboard on certain Linux distributions. The bug, tracked as CVE-2024-28085, has been codenamed WallEscape by security researcher Skyler Ferrante. It has been described as […]
A new security shortcoming discovered in Apple M-series chips could be exploited to extract secret keys used during cryptographic operations. Dubbed GoFetch, the vulnerability relates to a microarchitectural side-channel attack that takes advantage of a feature known as data memory-dependent prefetcher (DMP) to target constant-time cryptographic implementations and capture sensitive data from the CPU cache. […]
The threat actors associated with the Medusa ransomware have ramped up their activities following the debut of a dedicated data leak site on the dark web in February 2023 to publish sensitive data of victims who are unwilling to agree to their demands. “As part of their multi-extortion strategy, this group will provide victims with […]
Redcliffe Labs is one of the most comprehensive testing facilities in India. It provides more than 3,600 different diagnostic tests for illnesses and wellbeing. Users of the mobile application have the option of receiving medical diagnostic services in their homes, at medical facilities, or over the internet. These services include in-home full-body examinations, blood testing, […]
Recent events have shown that the artificial intelligence (AI) research branch of Microsoft was the victim of a serious data disclosure breach. An incorrect configuration of an Azure storage account led to the disclosure of 38 gigabytes of confidential internal Microsoft data, as was discovered by a cybersecurity group known as Wiz.When researchers from Microsoft […]
As per reports, On May 12, 2023, Toyota Motor Corporation discovered that they had been subject to a Potential data leak due to misconfiguration of the Cloud Environment on their Japanese side. Toyota Investigated all of its cloud environments and found that some customer information was accessible externally. Currently, there has been another incident at […]
KillNet originally came into being in the midst of the continuing Russian invasion of Ukraine, at which time it positioned itself as a counter-attack force against the hacktivist group Anonymous. At that time, KillNet has exploited vulnerabilities in commercial companies as well as essential government websites all around the globe, including, among other places, the […]
One of the most popular and widely used web servers for Java is Apache Tomcat. It is small, simple to install, and highly pleasant for constructing Java web applications. It can also be used to create applications that are a bit more sophisticated than the conventional JSP application online since it can include JSF implementations […]
Veeam is a big vendor of backup services, as shown by the fact that it counts over 450,000 clients all over the world, among them are 81% of the Fortune 500 and 70% of the Global 2000. This makes it an appealing target. Veeam has issued a warning to its customers, advising them to update […]
Nissan North America has alerted affected customers of a breach that occurred at a third-party service provider and resulted in the exposure of client information. According to the notification, Nissan states that on June 21, 2022, it was notified of a data breach by one of the software development suppliers that it works with. The […]
Security researchers are warning of “a trove of sensitive information” leaking through urlscan.io, a website scanner for suspicious and malicious URLs. “Sensitive URLs to shared documents, password reset pages, team invites, payment invoices and more are publicly listed and searchable,” Positive Security co-founder, Fabian Bräunlein, said in a report published on November 2, 2022. The […]
An group going by the name “Black Reward” said that it had obtained and stolen data pertaining to “Iran’s public and private contacts with the International Atomic Energy Agency,” as well as other documents, such as building blueprints, management and operation schedules, and the “passports and visas of Iranian and Russian specialists” involved in the […]
Ferrari has suffered an attack that has resulted in 7 GB of stolen company information. The cyberattack has been produced and claimed by the ‘RansomEXX’ cybercriminal group, known for its RaaS (Ransomware-as-a-Service) activities. The Italian luxury super sports car company Ferrari has confirmed the theft of information.In the statement they add that there is no […]
The Mexican president, Andrés Manuel López Obrador, acknowledged this Friday that the Army suffered a hack that led to the leak of tens of thousands of documents that include information on his health status and drug trafficking operations. “They took advantage of the fact that we are carrying out a change in the Army, the […]
An analysis of leaked chats from the notorious Conti ransomware group earlier this year has revealed that the syndicate has been working on a set of firmware attack techniques that could offer a path to accessing privileged code on compromised devices. “Control over firmware gives attackers virtually unmatched powers both to directly cause damage and […]
Cybersecurity specialists report finding 14 new variants of cross-site leaking attacks (XS-Leaks) affecting some of the most popular web browsers, including Chrome, Edge, Safari, Mozilla and Firefox. Successful exploitation of these attacks would allow threat actors to evade security mechanisms such as the same-origin policy and force the extraction of information from a website in […]
The latest EPIK data leak, according to Anonymous hackers involves bootable disk images, API tokens, over 500,000 private keys, etc. – All in plain-text format. Hacktivist group Anonymous has published the second part of data stolen from controversial pro-right-wing web hosting platform Epik. As previously reported by Hackread.com, the previous leak comprised 180GB of the […]
Cybersecurity specialists report the detection of a design error in an important function of the Microsoft Exchange email server that could be abused by threat actors in order to collect Windows domains and application credentials from millions of users. Amit Serper, the specialist in charge of the finding, mentions that the error lies in the […]
Email accounts linked with Virginia National Guard were targeted in the cyberattack. According to details shared by the representative of the chief of public affairs for the Virginia National Guard, A. A. Puryear, in July, email accounts linked to the Virginia Department of Military Affairs, and the Virginia Defense Force, were affected by a cyberattack. […]
The Lockbit ransomware gang also claimed to have ”extra 200 GB” worth of Bangkok Airways data. On Thursday, Bangkok Airlines confirmed that the notorious LockBit ransomware gang ‘LockBit 2.0’ has stolen around 103 GB of data from the company and is now threatening to leak it online. Hackread.com can now confirm that the ransomware gang […]
This weekend, the Iranian hacktivism group known as Tapandegan publicly revealed some video samples taken from Tehran’s Evin prison. According to the members of Tapandegan, in these videos you can see how the prison authorities keep multiple political prisoners, who suffer severe violations of their human rights. In a statement, the activists condemned the violence […]