I-O Data Confirms Zero-Day Attacks on Routers, Full Patches Pending
Japanese device maker I-O Data this week confirmed zero-day exploitation of critical flaws in multiple routers and warned that full patches won’t be available for a few weeks. According to a warning from incident responders at JPCERT/CC, the most serious flaw opens the door for a remote attacker to disable the router’s firewall, execute commands, […]
Read More
Watch Now: Cyber AI & Automation Summit- All Sessions Available On Demand
SecurityWeek’s Cyber AI & Automation Summit took place on December 4th as a fully immersive online experience. All sessions are available to watch on demand. SecurityWeek’s 2024 Cyber AI & Automation Summit discusses the revolutionary role of AI, machine learning, and automation in cybersecurity. Available Sessions Include: Automating Threat Modeling: Challenges and AI Solutions (Audrey Long, Microsoft) […]
Read More
‘DroidBot’ Android Trojan Targets Banking, Cryptocurrency Applications
A newly discovered Android remote access trojan (RAT) is targeting 77 banks, cryptocurrency exchanges, and national entities, fraud prevention firm Cleafy warns. Dubbed DroidBot, and active since mid-2024, the RAT has been used in multiple campaigns in Europe, mainly targeting users in France, Italy, Spain, and Turkey. Attacks were observed in the UK and Portugal […]
Read More
50 Servers Linked to Cybercrime Marketplace and Phishing Sites Seized by Law Enforcement
Europol announced on Thursday that law enforcement in Germany and other European countries have dismantled infrastructure associated with a cybercrime marketplace and a network of phishing websites. An investigation launched in 2022 led to the discovery of a cybercrime marketplace named Manson Market, which enabled scammers and others to buy and sell stolen personal and […]
Read More
Bootloader Vulnerability Impacts Over 100 Cisco Switches
Cisco on Wednesday announced patches for a vulnerability in the NX-OS software’s bootloader that could allow attackers to bypass image signature verification. Tracked as CVE-2024-20397, the high-impact security defect exists due to insecure bootloader settings that enable an attacker to execute specific commands to bypass the verification process and load unverified software. While authentication is […]
Read More
Chemonics International Data Breach Impacts 260,000 Individuals
Chemonics International is notifying over 260,000 individuals that their personal information was compromised in a year-old data breach. Chemonics is an international development company based in Washington, D.C. The organization has projects in dozens of countries around the world, in areas such as economic growth, agriculture and food security, conflict and crisis, democracy and governance, […]
Read More
System Two Security Emerges From Stealth With Detection Engineering Solution
System Two Security this week emerged from stealth mode with a threat detection engineering solution and $7 million in seed funding. Founded by Robert Fly (CEO) and Prasanth Ganesan (CTO), System Two Security provides a solution that leverages gen-AI to make it easier for security teams to create detection rules for their enterprise. The company […]
Read More
White House Says at Least 8 US Telecom Firms, Dozens of Nations Impacted by China Hacking Campaign
A top White House official on Wednesday said at least eight U.S. telecom firms and dozens of nations have been impacted by a Chinese hacking campaign. Deputy national security adviser Anne Neuberger offered new details about the breadth of the sprawling Chinese hacking campaign that gave officials in Beijing access to private texts and phone […]
Read More
BT Investigating Hack After Ransomware Group Claims Theft of Sensitive Data
UK telecoms giant BT has launched an investigation after a notorious ransomware group claimed the theft of a significant amount of files, including sensitive information. The Black Basta ransomware group added BT — specifically its btci.com and btconferencing.com domains — to its Tor-based leak website, claiming to have obtained roughly 500 Gb of data, including […]
Read More
Veeam Warns of Critical Vulnerability in Service Provider Console
Backup, recovery, and data protection firm Veeam has released patches for two vulnerabilities in Veeam Service Provider Console, including a critical-severity flaw leading to remote code execution (RCE). A cloud-enabled platform, the Service Provider Console enables users to manage and monitor data protection operations and services across physical, virtual, and cloud-based environments running Veeam solutions. […]
Read More