December 2024 - Page 17 of 49 - Cyber Security News

Akira and RansomHub Surge as Ransomware Claims Reach All-Time High

Claims on ransomware groups’ data leak sites reached an all-time high in November, with 632 reported victims, according to Corvus Insurance Read More

December 13, 2024

News

Researchers Discover Malware Used by Nation-Sates to Attack Industrial Systems

IOCONTROL, a custom-built IoT/OT malware, was used by Iran-affiliated groups to attack Israel- and US-based OT/IoT devices, according to Claroty Read More

December 13, 2024

News

ISC2 Survey Reveals Critical Gaps in Cybersecurity Leadership Skills

ISC2 research has found that cybersecurity leaders have limited skills and training in areas like communication, strategic mindset and business acumen Read More

December 13, 2024

Advisories

curl-8.9.1-3.fc41

FEDORA-2024-a94430d221 Packages in this update: curl-8.9.1-3.fc41 Update description: fix HSTS subdomain overwrites parent cache entry (CVE-2024-9681) Read More

December 13, 2024

Advisories

Ivanti Cloud Services Application (CSA) Vulnerabilities (CVE-2024-11639, CVE-2024-11772, CVE-2024-11773)

What are the Vulnerabilities?Ivanti has released security updates to address multiple critical flaws in its Cloud Services Application (CSA) that could lead to privilege escalation...

December 13, 2024

News

UK Shoppers Frustrated as Bots Snap Up Popular Christmas Gifts

Almost three quarters of UK consumers believe bad bots are ruining Christmas by buying up popular gifts, forcing many to purchase expensive alternatives, according to...

December 13, 2024

Advisories

golang-x-crypto-0.31.0-2.fc40

FEDORA-2024-8f83d0ed92 Packages in this update: golang-x-crypto-0.31.0-2.fc40 Update description: Fix CVE-2024-45337 Read More

December 13, 2024

Advisories

golang-x-crypto-0.31.0-2.fc41

FEDORA-2024-c33c95804e Packages in this update: golang-x-crypto-0.31.0-2.fc41 Update description: Fix CVE-2024-45337 Read More

December 13, 2024

Advisories

USN-7158-1: Smarty vulnerabilities

It was discovered that Smarty incorrectly handled query parameters in requests. An attacker could possibly use this issue to inject arbitrary Javascript code, resulting in...

December 12, 2024

Advisories

A Vulnerability in Multiple Cleo Products Could Allow for Remote Code Execution

A vulnerability has been discovered in multiple Cleo products that could allow for remote code execution. Cleo’s LexiCom, VLTransfer, and Harmony is software that is...

December 12, 2024

Friday Squid Blogging: Squid Sticker

Italy’s Data Protection Watchdog Issues €15m Fine to OpenAI Over ChatGPT Probe

Ukraine’s Security Service Probes GRU-Linked Cyber-Attack on State Registers

LockBit Admins Tease a New Ransomware Version

Webcams and DVRs Vulnerable to HiatusRAT, FBI Warns

CISA Urges Encrypted Messaging After Salt Typhoon Hack

Ransomware Attackers Target Industries with Low Downtime Tolerance

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

US Organizations Still Using Kaspersky Products Despite Ban

Month: December 2024

Akira and RansomHub Surge as Ransomware Claims Reach All-Time High

Researchers Discover Malware Used by Nation-Sates to Attack Industrial Systems

ISC2 Survey Reveals Critical Gaps in Cybersecurity Leadership Skills

curl-8.9.1-3.fc41

Ivanti Cloud Services Application (CSA) Vulnerabilities (CVE-2024-11639, CVE-2024-11772, CVE-2024-11773)

UK Shoppers Frustrated as Bots Snap Up Popular Christmas Gifts

golang-x-crypto-0.31.0-2.fc40

golang-x-crypto-0.31.0-2.fc41

USN-7158-1: Smarty vulnerabilities

A Vulnerability in Multiple Cleo Products Could Allow for Remote Code Execution