Search Results for “Threat” – Page 4

Vulnerabilities

Sep 23, 2022

60 different HP printer models of inkjet, LaserJet Pro, and PageWide Pro printers allow threat actors to take control of network remotely. Patch these two flaws

Two crucial flaws in the firmware of several corporate printer models have been made public by Hewlett Packard. If exploited, these flaws would allow remote adversaries to execute malicious program on the vulnerable printer models. Due to insufficient bounds validation, the flaw (CVE-2022-28721), assessed as serious in severity with a CVSS scale of 9.8, is […]

root

Kids Online

Sep 08, 2022

Toys behaving badly: How parents can protect their family from IoT threats

It pays to do some research before taking a leap into the world of internet-connected toys

root

Cyber Attack

Aug 22, 2022

Meet Borat RAT, a New Unique Triple Threat

Atlanta-based cyber risk intelligence company, Cyble discovered a new Remote Access Trojan (RAT) malware. What makes this particular RAT malware distinct enough to be named after the comic creation of Sacha Baron Cohen? RAT malware typically helps cybercriminals gain complete control of a victim’s system, permitting them to access network resources, files, and power to […]

root

Vulnerabilities

Aug 11, 2022

Vulenerblity in UnRAR affects Linux & Unix Servers is being actively exploited by threat actors

The Cyber Security Agency of the United States (CISA) added to its catalog of vulnerabilities that are being actively exploited a recently discovered flaw in UnRAR. About the UnRAR vulnerability As CVE-2022-30333, this is a path traversal vulnerability in the version of RAR for Linux and UNIX systems. If successfully exploited, a malicious actor is […]

root

Cyber Attack

Aug 10, 2022

The Business of Hackers-for-Hire Threat Actors

Today’s web has made hackers’ tasks remarkably easy. For the most part, hackers don’t even have to hide in the dark recesses of the web to take advantage of people any longer; they can be found right in plain sight on social media sites or forums, professionally advertised with their websites, and may even approach […]

root

Vulnerabilities

Jul 06, 2022

Critical OpenSSL vulnerability CVE-2022-2274 allows threat actors to remotely run code on your servers and encrypt them

OpenSSL is a famous cryptography library that provides an open source implementation of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. It allows generating RSA private keys and performing encryption and decryption. A critical vulnerability in OpenSSL could allow a threat actor to achieve remote code execution (RCE) on server-side devices. Heap […]

root

Incidents

Jul 02, 2022

!HackerOne hacked! Bug bounty Platform becomes the victim of Insider Threat

A HackerOne employee had improperly accessed vulnerability reports submitted to the platform by security researchers’ for personal gain. The employee anonymously took these reports, somewhat modified them and disclosed these vulnerabilities outside the HackerOne platform directly to the customer with the goal of claiming bug bounty. The inquiry began after a HackerOne customer notified the […]

root

Data Breach

Jun 28, 2022

Overview of Top Mobile Security Threats in 2022

Your smartphone is your daily companion. The chances are that most of our activities rely on them, from ordering food to booking medical appointments. However, the threat landscape always reminds us how vulnerable smartphones can be. Consider the recent discovery by Oversecured, a security startup. These experts observed the dynamic code loading and its potential […]

root

Malware

Jun 27, 2022

Cybersecurity Experts Warn of Emerging Threat of “Black Basta” Ransomware

The Black Basta ransomware-as-a-service (RaaS) syndicate has amassed nearly 50 victims in the U.S., Canada, the U.K., Australia, and New Zealand within two months of its emergence in the wild, making it a prominent threat in a short window. “Black Basta has been observed targeting a range of industries, including manufacturing, construction, transportation, telcos, pharmaceuticals, […]

root

Malware

Jun 20, 2022

BRATA Android Malware Gains Advanced Mobile Threat Capabilities

The operators behind BRATA have once again added more capabilities to the Android mobile malware in an attempt to make their attacks against financial apps more stealthy. “In fact, the modus operandi now fits into an Advanced Persistent Threat (APT) activity pattern,” Italian cybersecurity firm Cleafy said in a report last week. “This term is […]

root

Incidents

May 27, 2022

Texas shooter sent death threats via Facebook Messenger prior the incident; Meta AI systems couldn’t detect them

It is well known that Meta has implemented sophisticated technology to monitor private messages sent through Facebook and Instagram in order to identify patterns of harmful content such as child pornography, harassment or sale of narcotics. While this AI-powered technology has helped prevent hundreds of criminal practices, nothing in the world is foolproof. On Wednesday, […]

root

Incidents

May 13, 2022

Threat actors could have hacked the U.S. Drug Enforcement Administration (DEA) and other related law enforcement agencies. Investigation still ongoing

The U.S. Drug Enforcement Administration (DEA) reports that it has begun an investigation into alleged cyberattacks that would have compromised up to 16 databases of federal agencies. According to KrebsOnSecurity researchers, this incident could be related to a cybercriminal group whose members pose as law enforcement officers in order to access sensitive information. A few […]

root

Vulnerabilities

May 11, 2022

Threat actors are exploiting critical vulnerability in F5 products to destroy firewalls and network devices completely

Cybercriminal groups have been exploiting a critical vulnerability in F5 BIG-IP solutions to erase file systems on affected devices, rendering servers completely useless. Tracked as CVE-2022-1388, successful exploitation of the flaw would allow remote threat actors to execute commands on BIG-IP network devices with root user privileges, making it a critical security risk. The company […]

root

Malware

Apr 15, 2022

As State-Backed Cyber Threats Grow, Here’s How the World Is Reacting

With the ongoing conflict in Eurasia, cyberwarfare is inevitably making its presence felt. The fight is not only being fought on the fields. There is also a big battle happening in cyberspace. Several cyber-attacks have been reported over the past months. Notably, cyber attacks backed by state actors are becoming prominent. There have been reports […]

root

Data Security

Apr 05, 2022

Should Financial Firms Brace for More Cyber Threats After A Turbulent 2021?

OK, so 2021 wasn’t a good year, and 2022 hasn’t fared any better where cybersecurity and vulnerabilities are concerned. Ubisoft is one of the latest firms to fall victim to a cyberattack; the US feels vulnerable to Russian cyberattacks, and every news report says 2021 was one of the most turbulent years for cyberattacks. Plus, […]

root

Vulnerabilities

Mar 08, 2022

The Continuing Threat of Unpatched Security Vulnerabilities

Unpatched software is a computer code containing known security weaknesses. Unpatched vulnerabilities refer to weaknesses that allow attackers to leverage a known security bug that has not been patched by running malicious code. Software vendors write additions to the codes, known as “patches,” when they come to know about these application vulnerabilities to secure these […]

root

Malware

Feb 18, 2022

Microsoft Warns of ‘Ice Phishing’ Threat on Web3 and Decentralized Networks

Microsoft has warned of emerging threats in the Web3 landscape, including “ice phishing” campaigns, as a surge in adoption of blockchain and DeFi technologies emphasizes the need to build security into the decentralized web while it’s still in its early stages. The company’s Microsoft 365 Defender Research Team called out various new avenues through which […]

root

Data Breach

Feb 02, 2022

Cynet’s Keys to Extend Threat Visibility

We hear about the need for better visibility in the cybersecurity space – detecting threats earlier and more accurately. We often hear about the dwell time and the time to identify and contain a data breach. Many of us are familiar with IBM’s Cost of a Data Breach Report that has been tracking this statistic […]

root

Vulnerabilities

Jan 25, 2022

Threat actors are actively exploiting a critical vulnerability, CVE-2021-20038, in SonicWall Secure Mobile Access (SMA) gateways. Update immediately

Cybersecurity specialists report that hacking groups are actively exploiting CVE-2021-20038, a severe vulnerability in SonicWall Secure Mobile Access (SMA) gateways, fixed in late 2021. The flaw was described as an unauthenticated stack-based buffer overflow residing in the SMA 100 Series devices (including SMA 200, 210, 400, 410 and 500v). Threat actors can exploit the flaw […]

root

News

Jan 17, 2022

U.S. Warns Against Russian Cyber Threats Amid Heightened Ukraine Tension

Different government agencies based in the United States have joined together in issuing cybersecurity advisory. The advisory was a summation of cyber activities that were connected to Russia in one way or another. The advisory followed rising tensions over the possibility of Russia invading Ukraine. Many agencies were involved in the recommendations. The latest advisory […]

root

Incidents

Dec 03, 2021

Angry employee stole his company’s data, blackmailed the bosses and dropped their stock by 20%. Best example of insider threat

The U.S. Department of Justice (DOJ) announced the arrest of Nickolas Sharp, an individual accused by the Federal Bureau of Investigation (FBI) of having exposed the confidential information of his former employer. Authorities argue that the defendant stole thousands of confidential records from a New York-based wireless communications firm he used to work for. Once […]

root