Tag: security
Thousands of Zimbra servers attacked following email account compromise
A critical vulnerability has been found in open source collaboration suite Zimbra which allows crooks to run remote code execution on vulnerable servers and deploy malware. The vulnerability is tracked as CVE-2024-45519, and is only exploitable when default settings are changed, and the postjournal service is enabled. That, luckily, reduces…
Read More
This AI-powered malware has evolved to add image recognition
Hackers can now steal people’s cryptocurrency wallet seed phrases, even when they are stored as an image file, experts have warned When a user sets up a new crypto wallet, they get a “seed phrase” – a set of 12 or 24 random words, which can later be used to…
Read More
Arc browser launches bug bounty program following worrying issues
Security researchers can now earn money by finding bugs in the Arc browser, the company has revealed. The Browser Company, the owners and maintainers of the software, have announced a new bounty program to help them plug dangerous holes. Rather unimaginatively called the Arc Bug Bounty Program, users can hunt…
Read More
Hacker made millions from breaking into business Office 365 accounts
A hacker has reportedly made millions of dollars by breaking into valuable Office 365 accounts and using the information found inside, on the stock market. The office of the US Attorney for the district of New Jersey has recently accused a UK national called Robert B. Westbrook of one count…
Read More
Docker API targeted by cryptojacking campaign looking to build mega botnet
Hackers have been spotted using the Docker Engine API to target various containers with cryptojackers and other malware. Cybersecurity researchers at Datadog, who recently observed one such campaign and reported on it in an in-depth analysis, noted the criminals first looked for internet-exposed Docker Engine APIs that are not password-protected,…
Read More
Rackspace internal systems hit by security threat, customer data exposed
Rackspace has reportedly suffered a supply chain attack that resulted in some internal monitoring information belonging to its clients being accessed. Apparently, Rackspace used its own servers to host a monitoring dashboard, built by ScienceLogic, for its customers. ScienceLogic is an IT operations management platform that provides real-time monitoring, automation,…
Read More