[ad_1] Magento flaw exploited to deploy persistent backdoor hidden in XML Pierluigi Paganini April 05, 2024 Threat actors are exploiting critical Magento vulnerability CVE-2024-20720 to install a persistent backdoor on e-stores. Sansec researchers observed threat actors are exploiting the recently disclosed Magento vulnerability CVE-2024-20720 to... Continue reading
Return to previous page
Page 8
[ad_1] Cloud security provider Wiz found two critical architecture flaws in generative AI models uploaded to Hugging Face, the leading hub for sharing AI models and applications. In a blog post published on April 4, Wiz Research described the two flaws and the risk they... Continue reading
[ad_1] Chinese threat actors have developed new techniques to move laterally post-exploitation of Ivanti vulnerabilities, new research from Mandiant has revealed. Five suspected China-nexus espionage groups’ activity has been detailed by Mandiant in a blog post, dated April 4. The activity follows the exploitation of... Continue reading
[ad_1] Cyberattack disrupted services at Omni Hotels & Resorts Pierluigi Paganini April 05, 2024 US hotel chain Omni Hotels & Resorts suffered a cyber attack that forced the company to shut down its systems. A cyberattack hit Omni Hotels & Resorts disrupting its services and... Continue reading
[ad_1] China-affiliated threat actors are ramping up the use of AI to influence and sow division in the US and other countries, according to a new report by the Microsoft Threat Analysis Center (MTAC). The researchers highlighted how Chinese Communist Party (CCP)-affiliated actors are publishing... Continue reading
[ad_1] HTTP/2 CONTINUATION Flood technique can be exploited in DoS attacks Pierluigi Paganini April 05, 2024 HTTP/2 CONTINUATION Flood: Researchers warn of a new HTTP/2 vulnerability that can be exploited to conduct powerful denial-of-service (DoS) attacks. HTTP messages can contain named fields in both header... Continue reading
[ad_1] Cybersecurity researchers have uncovered a new iteration of the JSOutProx malware, a sophisticated attack tool designed to target financial organizations across the Asia-Pacific (APAC) and Middle East-North Africa (MENA) regions. First identified in 2019, JSOutProx combines JavaScript and .NET functionalities to infiltrate systems. This... Continue reading
[ad_1] Google fixed two actively exploited Pixel vulnerabilities Pierluigi Paganini April 03, 2024 Google addressed several vulnerabilities in Android and Pixel devices, including two actively exploited flaws. Google addressed 28 vulnerabilities in Android and 25 flaws in Pixel devices. Two issues fixed by the IT... Continue reading
[ad_1] Jackson County in Missouri, United States, reported significant disruptions within its IT systems on Tuesday, caused by a ransomware attack. The disturbances have led to the declaration of a state of emergency caused by operational inconsistencies across digital infrastructure, with specific systems rendered inoperative... Continue reading
[ad_1] US cancer center City of Hope: data breach impacted 827149 individuals Pierluigi Paganini April 04, 2024 US cancer center City of Hope suffered a data breach that impacted 800,000 individuals, personal and health information was compromised. City of Hope is a renowned cancer research... Continue reading