Tag cybersecurity

SEC Reveals Hackers Breached Edgar Corporate Filing System Last Year

SEC Cyber Breach Unveils Vulnerabilities in Corporate Filing System This month has seen significant cybersecurity events, not least a recent revelation from the U.S. Securities and Exchange Commission (SEC), the premier regulatory body overseeing the nation’s securities markets. The SEC has disclosed that hackers infiltrated its financial document filing system,…

Read MoreSEC Reveals Hackers Breached Edgar Corporate Filing System Last Year

New Supply Chain Vulnerabilities Discovered in AMI MegaRAC BMC Software

Two additional security vulnerabilities have been identified in AMI MegaRAC Baseboard Management Controller (BMC) software, just two months following the discovery of three similar flaws in the same system. Firmware security firm Eclypsium disclosed these new vulnerabilities, which were withheld previously to allow AMI time to implement necessary mitigations. The…

Read MoreNew Supply Chain Vulnerabilities Discovered in AMI MegaRAC BMC Software

Unveiling a Startling Data Breach at a Therapy Service: An Investigation by Jenny Kleeman

In a troubling development that underscores the vulnerabilities of digital privacy, a significant breach has occurred involving the exposure of private therapy notes from more than 33,000 patients. This incident has sparked widespread concern over the security of sensitive mental health information. The central figure in this breach is Finnish…

Read MoreUnveiling a Startling Data Breach at a Therapy Service: An Investigation by Jenny Kleeman

Researchers Discover New Vulnerabilities in Widely Used ImageMagick Image Processing Tool

ImageMagick Exposed: Two Critical Vulnerabilities Found Cybersecurity experts have identified serious security flaws in the widely-used open source software, ImageMagick, which could result in denial-of-service (DoS) attacks and unauthorized information disclosure. Discovered by the Latin American cybersecurity firm Metabase Q in version 7.1.0-49, these vulnerabilities were subsequently addressed in an…

Read MoreResearchers Discover New Vulnerabilities in Widely Used ImageMagick Image Processing Tool

Critical Vulnerabilities Uncovered in Cisco IOx and F5 BIG-IP Products

F5 Networks has issued a warning about a critical vulnerability affecting its BIG-IP appliances, which poses risks of denial-of-service (DoS) attacks or arbitrary code execution. This vulnerability stems from the iControl Simple Object Access Protocol (SOAP) interface, impacting several versions of BIG-IP, specifically versions 13.1.5, 14.1.4.6 to 14.1.5, 15.1.5.1 to…

Read MoreCritical Vulnerabilities Uncovered in Cisco IOx and F5 BIG-IP Products

Scam Warning: Even Trusted Friends Can Compromise Your Facebook Account

A new phishing scam targeting Facebook users has emerged, exploiting the platform’s “Trusted Contacts” feature to deceive victims into compromising their own accounts. Reports indicate that attackers are leveraging previously compromised accounts of friends to initiate urgent requests for recovery assistance, creating a facade of legitimacy that can trick even…

Read MoreScam Warning: Even Trusted Friends Can Compromise Your Facebook Account

Alert: Hackers Targeting Zero-Day Vulnerability in Fortra’s GoAnywhere MFT

A newly discovered zero-day vulnerability impacting Fortra’s GoAnywhere MFT managed file transfer application is currently being exploited by cybercriminals. The details of this flaw emerged when security journalist Brian Krebs shared the information on Mastodon, although Fortra has yet to issue a public advisory regarding this incident. This vulnerability enables…

Read MoreAlert: Hackers Targeting Zero-Day Vulnerability in Fortra’s GoAnywhere MFT