If you’re involved in securing APIs, applications and web applications, or looking to learn about these, then the OWASP Global AppSec DC Conference next week is a must-attend event. Wallarm, the experts in API and application security, will be there,…
Tag: EN
Report: September Sees Record Ransomware Attacks Surge
In September, a notable surge in ransomware attacks was recorded, as revealed by NCC Group’s September Threat Pulse. Leak sites disclosed details of 514 victims, marking a significant 153% increase compared to the same period last year. This figure…
The Dark Side of AI: How Cyberthreats Could Get Worse, Report Warns
A UK government report warns that by 2025, artificial intelligence could escalate the risk of cyberattacks and undermine public confidence in online content . It also suggests that terrorists could use the technology to plot chemical or biological strikes. …
Five Canada Hospitals hit by cyber attack, ransomware suspected
Transform, a prominent IT, accounts, and managed service provider dedicated to providing digital support to over five hospitals in Ontario, Canada, is currently under suspicion of being targeted in a cyber attack. Unconfirmed sources suggest that the hospital services have…
VMware Tools Flaw Let Attackers Escalate Privileges
Two high vulnerabilities have been discovered in VMware Tools, which were assigned with CVE-2023-34057 and CVE-2023-34058. These vulnerabilities were associated with Local Privilege Escalation and SAML Token Signature Bypass. The severities of these vulnerabilities are 7.5 (High) and 7.8 (High),…
Apple fixes bug that undermined iOS privacy feature for years
Apple has fixed a years-old vulnerability in its iPhone and iPad software that undermined a privacy feature since it first debuted. Back in 2020, Apple announced a new feature in iOS 14 that would prevent nearby wireless routers and access…
Empowering Partner Success: How Cisco’s PXP Transforms the Partner Experience
Today, 60% of the tools we evaluated have been eliminated, merged, or reworked into PXP. Together with our partners, we have not only continued to deliver on simplification, but we’ve also expanded the innovation and value that PXP provides. This…
Imperva Customers are Protected Against the Latest F5 BIG-IP Vulnerability
Imperva is tracking the recent critical security vulnerability impacting F5’s BIG-IP solution. The vulnerability, CVE-2023-46747, could allow an attacker to bypass authentication and potentially compromise the system via request smuggling. Imperva Threat Research has been actively monitoring this situation, and…
N. Korean Lazarus Group Targets Software Vendor Using Known Flaws
The North Korea-aligned Lazarus Group has been attributed as behind a new campaign in which an unnamed software vendor was compromised through the exploitation of known security flaws in another high-profile software. The attack sequences, according to Kaspersky, culminated in the deployment…
And the phishing Oscar goes to…
Cybercriminals are constantly evolving their tactics to exploit the latest trends and technologies. One way they do this is by using the names of popular celebrities to create phishing scams and other […] Thank you for being a Ghacks reader.…