Read Time:5 Second
The vulnerabilities, now patched, posed significant risks, including unauthorized file uploads, privilege escalation and SQL injection attacks
Daily Archives: December 23, 2024
Ransomware Attack Exposes Data of 5.6 Million Ascension Patients
Read Time:7 Second
US healthcare giant Ascension revealed that 5.6 million individuals have had their personal, medical and financial information breached in a ransomware attack
Criminal Complaint against LockBit Ransomware Writer
Read Time:6 Second
The Justice Department has published the criminal complaint against Dmitry Khoroshev, for building and maintaining the LockBit ransomware.
Cryptomining Malware Found in Popular Open Source Packages
Read Time:5 Second
Cryptomining malware hits popular npm packages rspack and vant, posing risks to open source tools
A Vulnerability in Apache Struts2 Could Allow for Remote Code Execution
Read Time:30 Second
A vulnerability has been discovered in Apache Struts2, which could allow for remote code execution. Apache Struts2 is an open-source web application framework used for developing Java web applications. Successful exploitation of this vulnerability could allow for remote code execution in the context of the affected service account. Depending on the privileges associated with the service account, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Services whose accounts are configured to have less rights on the system could be less impacted than those who operate with administrative user rights.
Interpol Identifies Over 140 Human Traffickers in New Initiative
Read Time:6 Second
A new digital operation has enabled Interpol to identify scores of human traffickers operating between South America and Europe
ICO Warns of Mobile Phone Festive Privacy Snafu
Read Time:7 Second
The Information Commissioner’s Office has warned that millions of Brits don’t know how to erase personal data from their old devices