Medibank, an Australian Insurance Company has confirmed that threat actors have accessed their customers personal data during a recent ransomware attack.
The CISA has alerted the IT community for a critical Java deserialization vulnerability affecting several Zoho ManageEngine solutions. The security flaw CVE-2022-35405 can be exploited without user interactions and perform remote code execution on devices that has the following Zoho ManageEngine products – PAM360, Password Manager Pro and Access Manager Plus.
Bumblebee malware is back again this time with a new version that is featuring a infection chain that uses the PowerSploit framework for stealthy reflective injection of a DLL payload into memory.
Security analysts have identified a new malware campaign ‘GO#WEBBFUSCATOR’ that works on malicious documents, phishing emails, and space images form the James Webb telescope to distribute malware.
DuckDuckGo has launched its ‘Email Protection’ service to everyone and people can start it with ‘@duck.com’ email address.
GitLab is requesting users to update branches 15.1, 15.2 and 15.3 of community and enterprise editions to fix a critical flaw that would allow attackers to perform a remote code execution on Github import.
Cybercriminals are continuously targeting SaaS solutions and platforms to create dubious websites and steal login credentials.
The French Hospital Center Hospitaliser Sud Francilien(CHSF) was hit by a ransomware attack on Sunday which affected its mundane operations.
The Russian firm Roskmnadzor is working on a neural network called ‘Oculus’ which will employ AI to scan websites for any prohibited details.
The CISA has mentioned seven new vulnerabilities to the list of bugs that are actively exploited by threat actors as per the latest flaws published by Apple, SAP, Google and Microsoft.
