October 26, 2022 - Cyber Security News

Smashing Security podcast #295: Slushygate, sextortion, and nano-targeting

What is slushygate and how does it link to sextortion in the States? What is the most impersonated brand when it comes to delivering phishing...

October 26, 2022

Advisories

USN-5703-1: Linux kernel (Intel IoTG) vulnerabilities

Selim Enes Karaduman discovered that a race condition existed in the General notification queue implementation of the Linux kernel, leading to a use-after-free vulnerability. A...

October 26, 2022

Advisories

USN-5702-2: curl vulnerability

USN-5702-1 fixed a vulnerability in curl. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Robby Simpson...

October 26, 2022

Advisories

device-mapper-multipath-0.8.7-9.fc36

FEDORA-2022-6ec78b2586 Packages in this update: device-mapper-multipath-0.8.7-9.fc36 Update description: Security fix for CVE-2022-41973 and CVE-2022-41974 Read More

October 26, 2022

Advisories

USN-5696-2: MySQL vulnerabilities

USN-5696-1 fixed several vulnerabilities in MySQL. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: Multiple security issues were discovered in...

October 26, 2022

Advisories

USN-5702-1: curl vulnerabilities

Robby Simpson discovered that curl incorrectly handled certain POST operations after PUT operations. This issue could cause applications using curl to send the wrong data,...

October 26, 2022

News

Vice Society Ransomware Campaigns Continue to Impact US Education Sector

In several cases, the group did not deploy ransomware and performed extortion using stolen data Read More

October 26, 2022

News

Typosquat Campaign Targeting Android, Windows Users Now Counts 600+ Domains

The list of suspicious domains grew to more than 600, with 9 of these created in the last week Read More

October 26, 2022

News

Microsoft Event Log vulnerabilities threaten some Windows operating systems

A pair of newly discovered vulnerabilities have highlighted the ongoing risks posed by Internet Explorer’s (IE) deep integration into the Windows ecosystem, despite Microsoft ending...

October 26, 2022

News

Hive Ransomware Group Leaks Data Stolen in Tata Power Cyber-Attack

The leak reportedly affected several of Tata’s 12 million customers and included various PII Read More

October 26, 2022

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Friday Squid Blogging: Squid-A-Rama in Des Moines

Pro-Russian Hacktivists Target South Korea as North Korea Joins Ukraine War

AI Industry is Trying to Subvert the Definition of “Open Source AI”

Major Oilfield Supplier Hit by Ransomware Attack

North Korean Actor Deploys Novel Malware Campaign Against Crypto Firms

Androxgh0st Botnet Adopts Mozi Payloads, Expands IoT Reach

Interlock Ransomware Targets US Healthcare, IT and Government Sectors

Prompt Injection Defenses Against LLM Cyberattacks

Day: October 26, 2022

Smashing Security podcast #295: Slushygate, sextortion, and nano-targeting

USN-5703-1: Linux kernel (Intel IoTG) vulnerabilities

USN-5702-2: curl vulnerability

device-mapper-multipath-0.8.7-9.fc36

USN-5696-2: MySQL vulnerabilities

USN-5702-1: curl vulnerabilities

Vice Society Ransomware Campaigns Continue to Impact US Education Sector

Typosquat Campaign Targeting Android, Windows Users Now Counts 600+ Domains

Microsoft Event Log vulnerabilities threaten some Windows operating systems

Hive Ransomware Group Leaks Data Stolen in Tata Power Cyber-Attack