May 2022 - Cyber Security News

Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade Sanctions

Costa Rica’s national health service was hacked sometime earlier this morning by a Russian ransomware group known as Hive. The intrusion comes just weeks after...

May 31, 2022

Advisories

USN-5454-2: CUPS vulnerabilities

USN-5454-1 fixed several vulnerabilities in CUPS. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: Joshua Mason discovered that CUPS incorrectly...

May 31, 2022

News

Microsoft gives mitigation advice for Follina vulnerability exploitable via Office apps

Attackers are actively exploiting an unpatched remote code execution (RCE) vulnerability in a Windows component called the Microsoft Support Diagnostic Tool (MSDT) through weaponized Word...

May 31, 2022

Advisories

USN-5451-1: InfluxDB vulnerability

Ilya Averyanov discovered that an InfluxDB vulnerability allowed attackers to bypass authentication and gain access to any known database user. Read More

May 31, 2022

Advisories

Follina: 0-day Windows MSDT Vulnerability (CVE-2022-30190) Exploited In The Wild

FortiGuard Labs is aware that a 0-day vulnerability in Microsoft Support Diagnostic Tool is being exploited in the wild. The first sample that exploits the...

May 31, 2022

News

Microsoft Acknowledges Zero-Day, Follina Office Vulnerability, Suggests Fix

Microsoft released an advisory on Monday regarding the zero-day Office flaw dubbed ‘Follina’ . Read More

May 31, 2022

News

Connecting Cyber Risk to Business Risk

CIS worked with 4RS to develop an analysis tool that helps professionals solve the cyber risk to business risk challenge. Read More

May 31, 2022

News

Magniber Ransomware Now Targets Windows 11 Machines

Magniber ransomware upgraded to prompt fake Windows 11 updates Read More

May 31, 2022

News

CVE-2022-30190: Zero Click Zero Day in Microsoft Support Diagnostic Tool Exploited in the Wild

CVE-2022-30190: Zero Click Zero Day in Microsoft Support Diagnostic Tool Exploited in the Wild Microsoft confirms remote code execution vulnerability in Microsoft Windows Support Diagnostic...

May 31, 2022

Advisories

cups-2.3.3op2-18.fc34

FEDORA-2022-97b4ae7fb4 Packages in this update: cups-2.3.3op2-18.fc34 Update description: Security fix for CVE-2022-26691 Read More

May 31, 2022

ClickFix Exploits Users with Fake Errors and Malicious Code

Canadian Man Arrested in Snowflake Data Extortions

The AI Fix #23: Murder most weird, and why 9.11 is bigger than 9.9

ToxicPanda Malware Targets Banking Apps on Android Devices

US Voters Urged to Use Official Sources for Election Information

AIs Discovering Vulnerabilities

Pakistani Hackers Targeted High-Profile Indian Entities using Custom RAT

Oasis Fans Losing Up to £1000 Each to Ticket Scammers

Chinese Air Fryers May Be Spying on Consumers, Which? Warns

Month: May 2022

Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade Sanctions

USN-5454-2: CUPS vulnerabilities

Microsoft gives mitigation advice for Follina vulnerability exploitable via Office apps

USN-5451-1: InfluxDB vulnerability

Follina: 0-day Windows MSDT Vulnerability (CVE-2022-30190) Exploited In The Wild

Microsoft Acknowledges Zero-Day, Follina Office Vulnerability, Suggests Fix

Connecting Cyber Risk to Business Risk

Magniber Ransomware Now Targets Windows 11 Machines

CVE-2022-30190: Zero Click Zero Day in Microsoft Support Diagnostic Tool Exploited in the Wild

cups-2.3.3op2-18.fc34