Discontent about the integration of artificial intelligence into online platforms is emerging from an unexpected source. A disgruntled individual has expressed frustration regarding a cybercrime forum’s plans to enhance its features with generative AI. In an anonymous online comment, the user stated, “No one is asking for this—we want you…
New Intel Processor Vulnerabilities Expose Sensitive Data from Trusted Execution Environments Cybersecurity experts have identified two significant vulnerabilities that modern Intel processors face, allowing potential attackers to extract confidential information from the CPU’s trusted execution environments (TEE). These vulnerabilities, named SGAxe and CrossTalk, pose critical threats to system integrity and…
A recent investigation by the Galileo threat research team at DataDome has uncovered a highly fragmented Distributed Denial of Service (DDoS) campaign that is alarming in its scale and sophistication. In mid-April, within a mere five hours, cybercriminals unleashed a staggering 2.45 billion malicious requests targeting a prominent user-generated content…
Oracle E-Business Suite Vulnerabilities Exposed: Urgent Action Required Businesses relying on Oracle’s E-Business Suite (EBS) should verify that they are operating the latest version of the software. Recent findings from cybersecurity firm Onapsis highlight critical vulnerabilities within EBS that demand immediate attention. In a report shared with The Hacker News,…
Recent Cyberattack Targets Dozens of Organizations with Sophisticated Backdoors In a concerning development within the cybersecurity landscape, a follow-on payload identified by Kaspersky as a “minimalistic backdoor” has infiltrated nearly a dozen organizations. This malware possesses capabilities to execute commands, download files, and deploy shellcode within memory, complicating detection efforts…
Critical Vulnerabilities Found in GeoVision Surveillance Devices GeoVision, a Taiwanese provider of video surveillance systems and IP cameras, has recently addressed three of four significant vulnerabilities that potentially allowed cyber attackers to intercept network traffic and execute man-in-the-middle attacks. These vulnerabilities were identified by Acronis, a cybersecurity firm, during a…
Recently, SAP addressed a critical vulnerability affecting the LM Configuration Wizard component of the NetWeaver Application Server (AS) Java platform. This flaw, named RECON and identified as CVE-2020-6287, allows unauthenticated attackers to gain control over SAP applications, raising significant concerns for cybersecurity within organizations employing this technology. Onapsis, a cybersecurity…
Adobe has recently rolled out critical software updates addressing a total of 13 security vulnerabilities across five of its widely used applications. Among these vulnerabilities, four have been classified as critical, while the remaining nine are of significant concern, particularly for users operating the affected software. The products that received…
The Office of the Comptroller of the Currency (OCC) recently imposed an $80 million fine on Capital One Financial Corp due to a data breach that jeopardized the personal information of over 100 million credit card applicants across the United States. This regulatory action stems from an extensive investigation into…