Data Breach Exposes Personal Information of 451,000 Users on Brazilian Crowdfunding Platform In a significant data breach, the Brazilian crowdfunding platform APOIA.se has exposed the personal information of around 451,000 unique users. The compromised data, now indexed by the breach notification service Have I Been Pwned (HIBP), raises concerns about…
The OpenSSH maintainers have announced the release of OpenSSH 9.2, which aims to rectify several security vulnerabilities, notably a memory safety issue identified in the OpenSSH server (sshd). This vulnerability, cataloged as CVE-2023-25136, is classified as a pre-authentication double free vulnerability that was introduced with version 9.1. The maintainers clarified…
Recent reports have unveiled the resurgence of FinSpy, a notorious surveillance malware, which is now targeting high-profile users via a fresh Adobe Flash zero-day exploit embedded within Microsoft Office documents. This significant threat was uncovered by security experts from Kaspersky Labs, who identified a vulnerability in Adobe Flash that is…
The recent temporary closure of airspace over El Paso, Texas, and parts of New Mexico has raised concerns regarding the efficacy of the United States’ defenses against drone threats. Initially set to last for 10 days, the Federal Aviation Administration (FAA) lifted the restrictions just eight hours later, reflecting the…
Insider Threat Leads to Massive Data Breach in South Korea In a significant breach of financial security, sensitive data from at least 20 million customers was compromised due to the actions of an insider employee in South Korea. The individual, who had worked as a temporary consultant at the Korean…
Explore key topics such as Data Backup and Recovery, Data Loss Prevention (DLP), and Data Security. Presented by Blancco 60 Minutes As businesses increasingly modernize their infrastructures to meet demands for AI integration, cloud computing, and sustainability, the management of end-of-life technology has surfaced as a significant risk factor. With…
Lotus Blossom Hackers Compromise Notepad++ Hosting Infrastructure In a significant cybersecurity incident, the Lotus Blossom attackers have successfully breached the official hosting infrastructure of Notepad++, a widely used text and source code editor. This breach raises concerns for users and businesses relying on Notepad++ for development and coding tasks, as…
Multiple Vulnerabilities Identified in Document Management Systems Recent findings have highlighted several security vulnerabilities across prominent open-source and freemium Document Management Systems (DMS) offered by four vendors: LogicalDOC, Mayan, ONLYOFFICE, and OpenKM. These unpatched flaws expose organizations to potentially severe cyber threats. Cybersecurity firm Rapid7 has reported eight critical vulnerabilities…
A pressing cybersecurity risk has emerged just a year following the notorious Mirai botnet attack, which disrupted numerous Internet services through extensive DDoS attacks. Security researchers are now raising alarms about a new IoT botnet known as “IoT_reaper,” first identified by experts from Qihoo 360. This malware has distinct characteristics,…