Critical Apache OFBiz Vulnerability Identified by CISA The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently identified a significant security vulnerability affecting the Apache OFBiz open-source enterprise resource planning (ERP) system, adding it to its Known Exploited Vulnerabilities (KEV)…
WazirX Suffers Major Security Breach Resulting in $230 Million Loss The Indian cryptocurrency exchange WazirX has reported a significant security breach that has led to the theft of approximately $230 million in digital assets. The breach specifically affected one of…
UK Businesses Face Surge in Data Breaches According to a recent report from insurers, UK businesses are grappling with an alarming increase in data breaches. A study by (re)insurance group Chaucer revealed that, in the past year, the average UK…
The BlackByte ransomware group has been actively exploiting security vulnerabilities to facilitate its attacks, notably including a recently patched flaw in VMware ESXi hypervisors. Cisco Talos reports that threat actors are utilizing a combination of this vulnerability along with various…
In a troubling development in the cybersecurity landscape, CrowdStrike, a prominent cybersecurity firm, is addressing significant operational disruptions caused by a flawed update to its Falcon platform, which has adversely affected numerous Windows devices globally. This situation has created an…
A new ransomware variant, identified as “Prince,” has emerged, targeting users in the United States and the United Kingdom. This sophisticated malware masquerades as legitimate communication from the British postal service, Royal Mail, making it particularly deceptive. According to a…
Title: £750,000 Fine Imposed on PSNI Following Data Breach Incident In a significant development concerning data security, the Police Service of Northern Ireland (PSNI) has been fined £750,000 by the Information Commissioner’s Office (ICO) for a serious breach of privacy.…
Fortra has disclosed a significant security vulnerability in FileCatalyst Workflow that could allow remote attackers to obtain administrative access. This flaw, designated as CVE-2024-6633, holds a critical CVSS score of 9.8, primarily due to the software’s reliance on a static…
Recent cybersecurity investigations have unveiled a sophisticated approach employed by threat actors, who are utilizing swap files on compromised websites to facilitate the operation of a persistent credit card skimmer designed to capture sensitive payment information. Security firm Sucuri identified…
Cybersecurity Risks Loom Over Streaming Services Amid Recent Breaches Streaming platforms, including industry leaders like Netflix, as well as niche services such as Crunchyroll, are confronting significant cybersecurity threats. In a landscape that has evolved rapidly, these services find themselves…
