SolarWinds has issued patches to mitigate a severe security vulnerability in its Web Help Desk software that could allow attackers to execute arbitrary code on affected systems. The vulnerability, identified as CVE-2024-28986 with a CVSS score of 9.8, is characterized as a deserialization issue. The company, in its advisory, indicated…
ADT, a prominent provider of home and small business security solutions, has reported a cybersecurity breach that occurred due to the exploitation of compromised credentials from a third-party business partner. In a Form 8-K filing with the Securities and Exchange Commission (SEC) made on Monday, ADT disclosed that this cyberattack…
Cyber Espionage Campaign Targets Telecom Operators in Asia Cyber espionage groups linked to China have been identified as responsible for an extensive intrusion campaign that has affected several telecommunications operators within an unnamed Asian country, with activity dating back to at least 2021. According to a report from the Symantec…
Russian National Indicted for Cyber Attacks Against Ukraine Amid Invasion The U.S. Department of Justice has charged a 22-year-old Russian individual, Amin Timovich Stigal, for his alleged involvement in launching disruptive cyber attacks directed at Ukraine and its allied nations during the critical period leading up to Russia’s military invasion…
Cyberattack Campaign Targets Israeli Entities Using Open-Source Tools Cybersecurity analysts have unearthed a sophisticated attack campaign directed at various entities within Israel, utilizing publicly available frameworks such as Donut and Sliver. HarfangLab, a cybersecurity research firm, detailed the operation in a report last week, describing it as highly targeted and…
SolarWinds has announced critical patches for a newly discovered security vulnerability in its Web Help Desk (WHD) application. This flaw potentially allows remote, unauthorized users to access and modify data within vulnerable systems. According to SolarWinds, the vulnerability—designated as CVE-2024-28987—is categorized with a CVSS score of 9.1, classifying it as…
A significant cybersecurity incident has reportedly allowed a foreign government to breach the systems of the Dutch police force, resulting in the exposure of contact information for nearly 63,000 law enforcement officers. This breach, confirmed to have occurred on September 26, 2024, has prompted heightened concerns regarding state-sponsored hacking and…
Cybersecurity Webinar: Addressing the Growing Threat of Identity Theft In a rapidly evolving digital landscape, identity theft has transcended the traditional image of stolen credit cards. Cybercriminals have now employed sophisticated methods to breach organizations, putting valuable credentials—and entire systems—at severe risk. Recent trends have shown a surge in malicious…
Traccar GPS System Exposed to Critical Vulnerabilities Leading to Remote Code Execution Recent disclosures have unveiled two significant security vulnerabilities within the open-source Traccar GPS tracking system, potentially allowing unauthenticated attackers to execute remote code under specific circumstances. These vulnerabilities, identified by Horizon3.ai researcher Naveen Sunkavally, are primarily path traversal…
