April 6, 2023 - Cyber Security News

CVE-2014-125094

A vulnerability classified as problematic was found in phpMiniAdmin up to 1.8.120510. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross...

April 6, 2023

News

Seized Genesis malware market’s infostealers infected 1.5 million computers

Infamous hacker marketplace Genesis, which was taken down this week by an international law enforcement operation involving 17 countries, was selling access to millions of...

April 6, 2023

Advisories

FEDORA-2023-1e24db98a6 Packages in this update: ffmpeg-5.0.3-1.fc36 Update description: New release with bug fixes across the tree Contains security fixes for CVE-2022-48434 and CVE-2022-3109. Read More

April 6, 2023

News

Default static key in ThingsBoard IoT platform can give attackers admin access

Developers of ThingsBoard, an open-source platform for managing IoT devices that's used in various industry sectors, have fixed a vulnerability that could allow attackers to...

April 6, 2023

News

CIS Benchmarks April 2023 Update

Here is an overview of the CIS Benchmarks that the Center for Internet Security updated or released for April 2023. Read More

April 6, 2023

Advisories

CVE-2020-19678

Directory Traversal vulnerability found in Pfsense v.2.1.3 and Pfsense Suricata v.1.4.6 pkg v.1.0.1 allows a remote attacker to obtain sensitive information via the file parameter...

April 6, 2023

News

Ukrainian hackers spend $25,000 of pro-Russian blogger’s money on sex toys

A pro-Russian blogger who raised $25,000 for drones to assist Russian troops fighting in Ukraine, has received a huge delivery of sex toys instead. Read...

April 6, 2023

News

A fireside chat with four CISOs about how they secure their cybersecurity firms from attack

On Tuesday 11 April, I'll be joined by the CISOs of security firms Wiz, Rubrik, Noname, and Abnormal, for a friendly chat about how they...

April 6, 2023

News

Threat Actors Increasingly Use Telegram For Phishing Purposes

The findings come from cybersecurity experts at Kaspersky Read More

April 6, 2023

Advisories

USN-6003-1: Emacs vulnerability

Xi Lu discovered that Emacs did not properly handle certain inputs. An attacker could possibly use this issue to execute arbitrary commands. Read More

April 6, 2023

Microsoft Patch Tuesday, November 2024 Edition

The AI Fix #24: Where are the alien AIs, and are we being softened up for superintelligence?

TA455’s Iranian Dream Job Campaign Targets Aerospace with Malware

Phishing Tool GoIssue Targets Developers on GitHub

CISOs Turn to Indemnity Insurance as Breach Pressure Mounts

New Citrix Zero-Day Vulnerability Allows Remote Code Execution

North Korea Hackers Leverage Flutter to Deliver macOS Malware

Criminals Exploiting FBI Emergency Data Requests

Winter Fuel Payment scam targets UK citizens via SMS

Day: April 6, 2023

CVE-2014-125094

Seized Genesis malware market’s infostealers infected 1.5 million computers

ffmpeg-5.0.3-1.fc36

Default static key in ThingsBoard IoT platform can give attackers admin access

CIS Benchmarks April 2023 Update

CVE-2020-19678

Ukrainian hackers spend $25,000 of pro-Russian blogger’s money on sex toys

A fireside chat with four CISOs about how they secure their cybersecurity firms from attack

Threat Actors Increasingly Use Telegram For Phishing Purposes

USN-6003-1: Emacs vulnerability