Experts at Uptycs have discovered a new variant of the Mallox ransomware, specifically designed for Linux systems. This malicious software encrypts victims’ data, rendering it inaccessible until a ransom is paid. The attackers utilize...
The popular online gaming platform Roblox has reported a data breach, shocking its numerous users. The company has informed players of the incident, which has led to the disclosure of sensitive information, including email...
In Gogs, a popular self-hosted open-source Git repository service, four unresolved vulnerabilities have been discovered, three of which are critical. These vulnerabilities could allow an authenticated attacker to compromise vulnerable instances, steal or destroy...
A security researcher has published a proof-of-concept (PoC) targeting a recently patched high-severity CVE-2024-37081 vulnerability in the VMware vCenter Server. With a CVSS score of 7.8, this vulnerability, rooted in the misconfiguration of sudo...
Cisco Systems has disclosed that over 40 of its products are affected by the vulnerability “CVE-2024-6387” in the server component of OpenSSH. The number of affected products may increase. CVE-2024-6387, also known as “regreSSHion”...
Recently, hardware manufacturer ZOTAC has unintentionally exposed a trove of sensitive customer data, including names, phone numbers, email addresses, and shipping information. The breach stemmed from inadequate security measures in the company’s after-sales service...
Apache NiFi, a widely-used data processing and distribution platform, has issued a security advisory, urging users to patch their systems immediately. The vulnerability, tracked as CVE-2024-37389, could allow authenticated attackers to execute malicious JavaScript...
The Apache CloudStack project has issued an urgent security advisory, urging users to immediately update their software to address two critical vulnerabilities that could expose their cloud infrastructure to complete compromise. The vulnerabilities, identified...
On a prominent hacker forum, a colossal database containing 9,948,575,739 unique passwords was published. The data breach, encapsulated in a file named rockyou2024.txt, marks the largest leak in the history of the digital age....
Malicious software known as GootLoader is actively employed by cybercriminals to deliver additional malware onto compromised devices. According to a recent analysis by Cybereason, updates to GootLoader have led to the emergence of several...
At the end of May, we reported on the breach of Ticketmaster, during which hackers managed to steal 1.3 TB of the company’s data. It later emerged that the compromised entity was a third-party...
OVHCloud, one of Europe’s leading cloud computing providers, recently disclosed a record-breaking distributed denial-of-service (DDoS) attack, which reached a peak packet rate of 840 million packets per second (Mpps). Mpps, representing millions of packets...
