The investigation by SolarWinds into the recent attacks that leveraged its products to threaten government and private sector organizations revealed that 18,000 clients might have used the compromised products the company said in a Monday filing with the Securities and Exchange Commission (SEC). The provider of IT management and monitoring Continue Reading
A hacker who appears to be acting on behalf of a foreign government, exploiting software provider SolarWinds, FireEye, a US security firm today deploys malware-infected updates to Orion software. He said he infected the network. The FireEye report was released after Reuters, The Washington Post, and The Wall Street Journal reported Continue Reading
According to reports, new malicious NPM packages have been found that install the njRAT remote access trojan, letting cybercriminals to gain control over a computer. NPM, a JavaScript package manager, allows developers and users to download packages and incorporate them into their projects. Since NPM is an open network, anyone can Continue Reading
A French security scientist has inadvertently found a zero-day flaw that affects the Windows 7 and Windows Server 2008 R2 operating systems while working on an update to a Windows security tool. The bug was discovered in two misconfigured registry keys for the RPC Endpoint Mapper and DNSCache services that Continue Reading
Security experts have found a major security fault in cPanel, a popular software suite that facilitates the management of a web hosting server. Discovered by security experts from Digital Defense, the vulnerability lets hackers circumvent two-factor authentication (2FA) for cPanel accounts, which are used by website owners to access and Continue Reading
By