02 May CISA urges software devs to weed out path traversal vulnerabilities CISA and the FBI urged software companies today to review their products and eliminate path traversal security vulnerabilities before shipping. […]
02 May Police shuts down 12 fraud call centres, arrests 21 suspects Law enforcement shut down 12 phone fraud call centers in Albania, Bosnia and Herzegovina, Kosovo, and Lebanon, behind thousands of scam calls daily. […]
02 May Microsoft warns of “Dirty Stream” attack impacting Android apps Microsoft has highlighted a novel attack dubbed “Dirty Stream,” which could allow malicious Android apps to overwrite files in another application’s home directory, potentially leading to arbitrary code execution and secrets theft. […]
02 May REvil hacker behind Kaseya ransomware attack gets 13 years in prison Yaroslav Vasinskyi, a Ukrainian national, was sentenced to 13 years and seven months in prison and ordered to pay $16 million in restitution for his involvement in the REvil ransomware operation. […]
02 May Microsoft won’t fix Windows 0x80070643 errors, manual fix required Microsoft has confirmed that it won’t provide an automated fix for a known issue causing 0x80070643 errors when installing recent Windows Recovery Environment (WinRE) updates. […]
02 May Cybersecurity consultant arrested after allegedly extorting IT firm A former cybersecurity consultant was arrested for allegedly attempting to extort a publicly traded IT company by threatening to disclose confidential and proprietary data unless they paid him $1,500,000. […]
01 May HPE Aruba Networking fixes four critical RCE flaws in ArubaOS HPE Aruba Networking has issued its April 2024 security advisory detailing critical remote code execution (RCE) vulnerabilities impacting multiple versions of ArubaOS, its proprietary network operating system. […]
01 May DropBox says hackers stole customer data, auth secrets from eSignature service Cloud storage firm DropBox says hackers breached production systems for its DropBox Sign eSignature platform and gained access to authentication tokens, MFA keys, hashed passwords, and customer information. […]
01 May Microsoft says April Windows updates break VPN connections Microsoft says the April 2024 Windows security updates break VPN connections on Windows 11, Windows 10, and Windows Server systems. […]
01 May Qantas app exposed sensitive traveler details to random users Qantas Airways confirms that some of its customers were impacted by a misconfiguration in its app that exposed sensitive information and boarding passes to random users. […]