Both security scientists and U.S. government establishments are exhorting admins to deal with Microsoft’s serious privilege escalation vulnerability. Proof-of-concept (PoC) exploit code, released for a Windows vulnerability, could let hackers to penetrate enterprises by gaining administrative privileges, giving them access to companies’ Active Directory domain controllers (DCs). Called “Zerologon”, the Continue Reading
As per the US government, China-sponsored attackers are targeting government agencies through flaws in Microsoft Exchange, Citrix, Pulse, and F5 devices and servers. The U.S. Cybersecurity and Infrastructure Security Agency (CISA and the Federal Bureau of Investigation have warned that Chinese MSS-allied hackers are launching attacks against US government agencies Continue Reading
At least 100,000 customers to phishing and fraud were potentially exposed to a cloud misconfiguration at the gaming-gear merchant. As per a researcher, a roughly 100,000 Razer customers, a tattler of high-end gaming equipment ranging from laptops to clothing, have had their private information exposed. Security advisor Bob Diachenko ran Continue Reading
Although ransomware has been around for the last two decades, the treat is as serious as it was back then. In fact, the intensity and sophistication of this attack have grown sharply with time. While ransomware attacks have particularly targeted state and local governments, health care sectors, private companies, and Continue Reading
This week, Bratislava-based cryptocurrency exchange, ETERBASE, revealed a security breach that suggested hackers breached its internal network and stole cryptocurrency funds worth $5.4 million. Disclosed on Thursday, the incident involved the stealing of several cryptocurrencies from the company’s six hot wallets storing Bitcoin, Ether, ALGO, Ripple, Tezos, and TRON assets. Continue Reading
By