High-Severity Privilege Escalation Vulnerability Patched in VMware Workstation
VMware has informed users about the availability of patches for a Workstation vulnerability that could be exploited by malicious hackers…
Iranian OilRig Hackers Using New Backdoor to Exfiltrate Data from Govt. Organizations
The Iranian nation-state hacking group known as OilRig has continued to target government organizations in the Middle East as part of a…
Manipulating Weights in Face-Recognition AI Systems
Interesting research: “Facial Misrecognition Systems: Simple Weight Manipulations Force DNNs to Err Only on Specific Persons“: Abstract: In this paper…
The Pivot: How MSPs can Turn a Challenge Into a Once-in-a-Decade Opportunity
Cybersecurity is quickly becoming one of the most significant growth drivers for Managed Service Providers (MSPs). That’s the main insight…
Exploitation of Oracle E-Business Suite Vulnerability Starts After PoC Publication
Exploitation attempts targeting a critical-severity Oracle E-Business Suite vulnerability have been observed shortly after proof-of-concept (PoC) code was published. One…
China Says It’s Looking Into Report of Spy Balloon Over US
China said Friday it is looking into reports that a Chinese spy balloon has been flying in U.S. airspace and…
GoAnywhere MFT Users Warned of Zero-Day Exploit
Users of the GoAnywhere secure managed file transfer (MFT) software have been warned about a zero-day exploit that malicious actors…
Patch your Jira Service Management Server and Data Center and check for compromise! (CVE-2023-22501)
Australian software maker Atlassian has released patches for CVE-2023-22501, a critical authentication vulnerability in Jira Service Management Server and Data…
Hackers Compromised Over 1,200 Redis Database Servers Using State-of-the-Art Malware
A new type of malware, designed to target vulnerable Redis servers on the internet, has been spreading rapidly since September…
New DDoS-as-a-Service Platform Attacking Medical Institutions
Passion Group, a Killnet, and Anonymous Russia affiliate, recently started providing DDoS-as-a-Service to pro-Russian hackers. During the attacks on January…