Category: security
Update now — Fortinet Windows VPN hacked to steal user data
Researchers spot Chinese threat actor stealing login credentials from Fortinet VPN Thefts carried out with the help of a vulnerability discovered in 2023 The bug is yet to be addressed, or even assigned a CVE Cybersecurity researchers has revealed that for months now, Fortinet’s Windows VPN client has been vulnerable…
Read More
Fake DocuSign emails are targeting some top US contractors
Fraudsters are impersonating US Government agencies Victims are encouraged to renew fake contracts using DocuSign Attacks have spiked almost 100% in the last month Cybersecurity researchers have found threat actors are increasingly using DocuSign impersonations to target businesses who interact with state and municipal agencies. Research by SlashNext found attacks…
Read More
A major VMware vCenter Server security bug is now being exploited, so patch now
A VMware bug that grants Remote Code Execution abilities is being exploited in the wild The bug was first spotted in September 2024, but the patch did not solve the problem A second patch was released, and users are urged to apply now Broadcom is warning two vulnerabilities plaguing its…
Read More
US Congressional staff exposed in Library of Congress email hack
Emails from the US Library of Congress reportedly compromised Attack was likely carried out by a foreign actor, experts claim US Government institutions are increasingly under attack Email correspondence to and from staff at the US Library of Congress’ Congressional Research Service have been compromised by a ‘foreign adversary’ in…
Read More
US space tech firm Maxar says employee personal data leaked in hack
Maxar notifies California Attorney General of data breach It says sensitive employee data was stolen in the attack The attacker used a Hong Kong address to breach the systems Maxar Space Systems has reported suffering a data breach in which it lost sensitive employee data. Confirming the breach in a…
Read More
Phishing emails using SVG attachments to help get away with attacks
Security researchers spotted phishing emails with SVG attachments The nature of SVG files allows them to bypass email protections Common sense remains the best way to defend against phishing Hackers are always looking for new ways to sneak phishing emails into people’s inboxes, and it seems SVG attachments are the…
Read More