The Breach News

Qualcomm Chip Vulnerabilities Allow Hackers to Access Private Data on Android Devices

Serious Vulnerabilities Discovered in Qualcomm Chipsets Affecting Millions of Devices Recent analysis by cybersecurity firm CheckPoint has unveiled a critical set of vulnerabilities affecting hundreds of millions of Android smartphones and tablets powered by Qualcomm chipsets. According to a report shared with The Hacker News, these flaws could allow malicious…

Read MoreQualcomm Chip Vulnerabilities Allow Hackers to Access Private Data on Android Devices

Instructure Secures Ransom Deal with ShinyHunters to Halt 3.65TB Canvas Data Breach

The American educational technology company Instructure, known for its Canvas platform, has reported a breach involving a decentralized cybercriminal group. This group threatened to leak sensitive data stolen from thousands of educational institutions following a successful infiltration of Instructure’s network. In an update released on Monday, the Utah-based firm announced…

Read MoreInstructure Secures Ransom Deal with ShinyHunters to Halt 3.65TB Canvas Data Breach

Recent WhatsApp Vulnerability May Have Allowed Hackers to Covertly Install Spyware on Your Devices

Recent cybersecurity concerns have arisen around WhatsApp, a widely-used messaging application, as it faces yet another critical vulnerability. Reports indicate that WhatsApp quietly addressed a significant flaw that could allow attackers to remotely compromise devices and access sensitive messages and files. This vulnerability, known as CVE-2019-11931, is categorized as a…

Read MoreRecent WhatsApp Vulnerability May Have Allowed Hackers to Covertly Install Spyware on Your Devices

Numerous Critical Vulnerabilities Discovered in Four Popular Open Source VNC Applications

Critical Vulnerabilities Discovered in Open-Source VNC Remote Desktop Applications Recent findings reveal that four widely used open-source VNC (Virtual Network Computing) remote desktop applications are susceptible to a staggering 37 security vulnerabilities. Many of these vulnerabilities have remained undetected for the last two decades, with the most severe posing the…

Read MoreNumerous Critical Vulnerabilities Discovered in Four Popular Open Source VNC Applications

Unresolved Strandhogg Android Vulnerability Under Active Exploitation

New Android Vulnerability Exploited by Malicious Apps Cybersecurity researchers have identified a significant unpatched vulnerability in the Android operating system, known as Strandhogg. This flaw is being exploited by numerous harmful mobile applications to unlawfully acquire users’ banking credentials and monitor their activities. The Strandhogg vulnerability resides within the Android…

Read MoreUnresolved Strandhogg Android Vulnerability Under Active Exploitation

FamousSparrow Attacks Oil and Gas Sector Using MS Exchange Server Vulnerability

Recent findings from Bitdefender Labs reveal that the hacking group FamousSparrow, believed to be linked to China, executed a targeted attack against an Azerbaijani energy company utilizing ProxyNotShell, Deed RAT, and Terndoor malware across three distinct waves. According to a newly published report by Bitdefender Labs, a series of coordinated…

Read MoreFamousSparrow Attacks Oil and Gas Sector Using MS Exchange Server Vulnerability

Major Vulnerability in GoAhead Web Server Poses Risks to Numerous IoT Devices

New Vulnerabilities Discovered in GoAhead Web Server Software Cybersecurity experts from Cisco Talos have identified two significant vulnerabilities within the GoAhead web server software, a lightweight application commonly integrated into hundreds of millions of Internet-connected smart devices. This discovery raises serious concerns for organizations relying on these technologies. The first…

Read MoreMajor Vulnerability in GoAhead Web Server Poses Risks to Numerous IoT Devices

Zero-Day Exploit Completely Bypasses Default BitLocker Security in Windows 11

A recently uncovered zero-day exploit, known as YellowKey, poses a significant risk to Windows 11 systems. This exploit enables individuals with physical access to bypass the standard BitLocker encryption, allowing them to access secured drives within mere seconds. BitLocker is crucial for protecting sensitive information on enterprise machines, as it…

Read MoreZero-Day Exploit Completely Bypasses Default BitLocker Security in Windows 11