The Breach News

Two Major Vulnerabilities in Zoom Could Have Allowed Attackers to Compromise Systems Through Chat

Critical Vulnerabilities Discovered in Zoom’s Video Conferencing Software In the realm of cybersecurity, recent developments concerning Zoom have raised significant alarms, especially for users relying on the platform for education, business, and social engagement. Cybersecurity researchers from Cisco Talos have identified two critical vulnerabilities within the popular video conferencing software,…

Read MoreTwo Major Vulnerabilities in Zoom Could Have Allowed Attackers to Compromise Systems Through Chat

Microsoft Unveils June 2020 Security Updates Addressing 129 Vulnerabilities

Microsoft Issues June 2020 Security Updates Addressing Critical Vulnerabilities Microsoft has announced the release of its software security updates for June 2020, which provide critical patches for 129 vulnerabilities found across various Windows operating systems and related products. This round of updates marks the third Patch Tuesday since the onset…

Read MoreMicrosoft Unveils June 2020 Security Updates Addressing 129 Vulnerabilities

A Child Using a Fake Mustache Outsmarted an Online Age Verification System

Meta Enhances Age-Verification Tools to Curb Underage Access Meta has significantly upgraded its age-verification processes by implementing an AI-driven system that analyzes images and videos on platforms like Instagram and Facebook. This initiative aims to identify and remove accounts belonging to users under the age of 13 by assessing “visual…

Read MoreA Child Using a Fake Mustache Outsmarted an Online Age Verification System

SMBleed: A Significant Security Flaw Impacts the Windows SMB Protocol

A critical vulnerability has recently been identified within the Server Message Block (SMB) protocol, exposing systems to the risk of remote kernel memory leakage. Researchers from cybersecurity firm ZecOps have labeled this vulnerability “SMBleed” (CVE-2020-1206). The flaw is particularly concerning, as it can be coupled with a previously reported “wormable”…

Read MoreSMBleed: A Significant Security Flaw Impacts the Windows SMB Protocol

Cybercriminals Are Grumbling About AI Spam Overwhelming Their Forums

Discontent about the integration of artificial intelligence into online platforms is emerging from an unexpected source. A disgruntled individual has expressed frustration regarding a cybercrime forum’s plans to enhance its features with generative AI. In an anonymous online comment, the user stated, “No one is asking for this—we want you…

Read MoreCybercriminals Are Grumbling About AI Spam Overwhelming Their Forums

Intel CPUs at Risk from New ‘SGAxe’ and ‘CrossTalk’ Side-Channel Vulnerabilities

New Intel Processor Vulnerabilities Expose Sensitive Data from Trusted Execution Environments Cybersecurity experts have identified two significant vulnerabilities that modern Intel processors face, allowing potential attackers to extract confidential information from the CPU’s trusted execution environments (TEE). These vulnerabilities, named SGAxe and CrossTalk, pose critical threats to system integrity and…

Read MoreIntel CPUs at Risk from New ‘SGAxe’ and ‘CrossTalk’ Side-Channel Vulnerabilities

Gigantic “Low and Slow” DDoS Attack Strikes Platform, Totaling 2.45 Billion in Just 5 Hours

A recent investigation by the Galileo threat research team at DataDome has uncovered a highly fragmented Distributed Denial of Service (DDoS) campaign that is alarming in its scale and sophistication. In mid-April, within a mere five hours, cybercriminals unleashed a staggering 2.45 billion malicious requests targeting a prominent user-generated content…

Read MoreGigantic “Low and Slow” DDoS Attack Strikes Platform, Totaling 2.45 Billion in Just 5 Hours

Exploitable Vulnerabilities in Oracle E-Business Suite Allow Hackers to Take Control of Business Operations

Oracle E-Business Suite Vulnerabilities Exposed: Urgent Action Required Businesses relying on Oracle’s E-Business Suite (EBS) should verify that they are operating the latest version of the software. Recent findings from cybersecurity firm Onapsis highlight critical vulnerabilities within EBS that demand immediate attention. In a report shared with The Hacker News,…

Read MoreExploitable Vulnerabilities in Oracle E-Business Suite Allow Hackers to Take Control of Business Operations

Popular Daemon Tools Disk Application Compromised in Month-Long Supply Chain Attack

Recent Cyberattack Targets Dozens of Organizations with Sophisticated Backdoors In a concerning development within the cybersecurity landscape, a follow-on payload identified by Kaspersky as a “minimalistic backdoor” has infiltrated nearly a dozen organizations. This malware possesses capabilities to execute commands, download files, and deploy shellcode within memory, complicating detection efforts…

Read MorePopular Daemon Tools Disk Application Compromised in Month-Long Supply Chain Attack