Category: security
Cisco smart licensing system sees critical security flaws exploited
Security researchers claim two Cisco Smart Licensing Utility bugs are being abused in the wild One of the bugs is a hardcoded admin account Both bugs were fixed in 2024, so users should update now Cybercriminals are abusing two vulnerabilities found in Cisco Smart Licensing Utility (CSLU) to unknown ends.…
Read More
Hackers are targeting unpatched ServiceNow instances that exploit 3 separate year-old vulnerabilities
ServiceNow fixed three flaws in July 2024, but researchers from GreyNoise saw a resurgence of abuse The flaws can be used for full database access Users should patch immediately to make sure they are protected There has been a “notable resurgence” in the abuse of three concerning ServiceNow security vulnerabilities,…
Read More
Ransomware attacks are costing Government offices a month of downtime on average
New research claims downtime from ransomware attacks is costing government agencies thousands The average downtime after an attack is over 27 days RansomHub is the top offender New research from Comparitech has outlined that a key underestimated aspect of ransomware is costing Government agencies thousands of dollars per day –…
Read More
Stalkerware data breach potentially hits over 2 million users, including thousands of Apple devices
A popular spyware company has suffered a data breach Almost 2 million SpyX records were compromised The software monitors devices without the users knowledge or consent A widely-used consumer-grade stalkerware operation was hit by a data breach in 2024, with millions of customers potentially affected. A TechCrunch report claims the…
Read More
A worrying Apple Password App vulnerability reportedlyleft users exposed for months
Apple’s Password App has been patched after a vulnerability was discovered The flaw left users exposed for three months, experts claim Users were at risk of social engineering attacks A bug in the iOS 18.2 Passwords app which left users vulnerable to phishing attacks for over three months after its…
Read More
Fake DeepSeek installers are infecting your device with dangerous malware
McAfee’s researchers find a “cocktail” of malware hiding behind fake DeepSeek apps The campaign preys on people searching for the generative AI tool Infostealers, crypto miners, and more, are being deployed this way The hype around DeepSeek is the next big thing cybercriminals are exploiting in their hacking campaigns, researchers…
Read More