Category: security
VMware reveals critical security bugs, so patch now
VMware has released patches for two critical vulnerabilities that could allow hackers to execute malware remotely. Users are advised to apply the patches immediately and thus secure their endpoints. In a security advisory, VMware said it was tipped off on the existence of two “heap-overflow vulnerabilities in the implementation of…
Read More
Asus patches serious security flaw across multiple routers — update now if you have any of these models
Asus has rolled out a critical firmware update to patch a severe vulnerability affecting seven of its business router models, urging customers and users to check their firmware status and apply the update accordingly. The flaw, identified as CVE-2024-3080 with a VCSS v3.1 score of 9.8, is an authentication bypass…
Read More
Keytronic confirms data breach after Black Basta ransomware gang strikes again
Hardware firm Keytronic has confirmed a significant data breach weeks after the Black Basta ransomware group leaked over 500GB of the company’s stolen data around two weeks ago. The company, known for its printed circuit board assembly (PCBA), reported the cyberattack in an SEC filing over a month ago on…
Read More
Microsoft set to dock bosses’ pay — if they haven’t shown good cybersecurity performance
The annual bonuses of Microsoft’s highest-ranking workers officers’ annual bonuses will depend on how mindful they were of cybersecurity, the company’s vice chair and president has revealed Ahead of the US House committee hearing on Microsoft’s security practices this week, Brad Smith submitted an addendum to his written testimony, in…
Read More
Truist Bank confirms data breach after stolen data appears online
The Sp1d3r cybercrime gang is making quite a name for itself as it is now selling sensitive data on thousands of Truist banking employees. Truist is a major US commercial bank formed in late 2019 after SunTrust Banks and BB&T merged, and now has $535 billion AUM (assets under management).…
Read More
Ex-employee of major South-East Asian IT firm jailed after he brings down its test servers — with scripts found on Google
An Indian national formerly employed in Singapore by the information technology (IT) services firm National Computer Systems (NCS) has been handed a custodial sentence for deleting all 180 of its test servers with scripts that he found on Google and then “perfected”. The story (via Tom’s Hardware) says Kandula Nagaraju,…
Read More