The Breach News

New GhostShell Hacking Group Focuses on Ukraine’s Drone Defense Systems

A recent cyberattack campaign has emerged, specifically targeting Ukraine’s drone sector, including military units, supply chains, and volunteer organizations. This campaign has been linked to a newly identified group known as GhostShell, designated with the tracking label MB-0009. Researchers from Synaptic Systems report that this group has been operational since…

Read MoreNew GhostShell Hacking Group Focuses on Ukraine’s Drone Defense Systems

New Man-in-the-Disk Attack Puts Millions of Android Phones at Risk

Recent research from Check Point Software Technologies has unveiled a critical vulnerability within the Android operating system, identified as the *Man-in-the-Disk* attack. This method allows cybercriminals to surreptitiously compromise smartphones by injecting malicious applications or executing denial-of-service attacks. At the core of this vulnerability lies the way Android applications manage…

Read MoreNew Man-in-the-Disk Attack Puts Millions of Android Phones at Risk

Adobe Unveils Critical Security Updates for Four Major Software Programs

Adobe has announced the August 2018 security patch update, addressing a total of 11 vulnerabilities across its software products. Notably, two of these vulnerabilities, affecting Adobe Acrobat and Reader, have been classified as critical. The vulnerabilities that have been tackled in this update impact a range of Adobe products, including…

Read MoreAdobe Unveils Critical Security Updates for Four Major Software Programs

Microsoft Issues Patches for 60 Vulnerabilities, Including Two Currently Under Active Exploitation

Microsoft has recently released its Patch Tuesday update for August 2018, effectively addressing a total of 60 vulnerabilities across various platforms. Among these, 19 are marked as critical, raising alarms for IT departments globally. The updates affect key components such as Microsoft Windows, the Edge browser, Internet Explorer, and multiple…

Read MoreMicrosoft Issues Patches for 60 Vulnerabilities, Including Two Currently Under Active Exploitation

White House Significantly Reduces Deadline for Transitioning Away from Quantum-Vulnerable Cryptography

The White House has set a new, accelerated deadline for government agencies and organizations to implement quantum-resistant encryption systems designed to fend off threats posed by quantum computing technologies. This extensive move aims to safeguard valuable information accumulated over decades, encompassing sensitive data from militaries, banks, governments, and private citizens…

Read MoreWhite House Significantly Reduces Deadline for Transitioning Away from Quantum-Vulnerable Cryptography

New PHP Code Execution Vulnerability Threatens WordPress Sites

New Exploit Technique Uncovered, Leaving Websites Vulnerable to PHP Deserialization Attacks Security researcher Sam Thomas from Secarma has identified a significant exploitation method that raises alarms for PHP-based web applications. This newly discovered technique enhances the potential for hackers to exploit critical deserialization vulnerabilities, particularly in functions that were previously…

Read MoreNew PHP Code Execution Vulnerability Threatens WordPress Sites

Dialog Claims Hacking Incident; Misconfigured Website Exposed Member Data

Data Breach at Dialog Reveals Personal Information of Prominent Members Dialog, an exclusive group co-founded by venture capitalist Peter Thiel, has confirmed a data breach that exposed the personal information of its members as well as previous event participants. Last week, the group notified individuals affected by the breach, attributing…

Read MoreDialog Claims Hacking Incident; Misconfigured Website Exposed Member Data

Serious Vulnerabilities in Ghostscript May Put Numerous Systems at Risk of Hack Attacks

Critical Vulnerability Discovered in Ghostscript Software In a significant cybersecurity development, a researcher from Google Project Zero has identified a severe remote code execution (RCE) vulnerability in Ghostscript, an open-source interpreter widely used for processing Adobe Systems’ PostScript and PDF files. Ghostscript, written in C, operates across various platforms, including…

Read MoreSerious Vulnerabilities in Ghostscript May Put Numerous Systems at Risk of Hack Attacks

Adobe Releases Urgent Patches for Critical Vulnerabilities in Photoshop CC

Adobe Addresses Critical Vulnerabilities in Photoshop CC Today, Adobe Systems released an emergency security update to address two severe remote code execution vulnerabilities affecting Adobe Photoshop CC on both Microsoft Windows and Apple macOS platforms. According to an advisory issued by Adobe, these critical flaws stem from memory corruption issues,…

Read MoreAdobe Releases Urgent Patches for Critical Vulnerabilities in Photoshop CC