Tag: security
Google warns of Chinese state actor hack in real-time following alerts
Google warns of ongoing captive portal hijack attacks Captive portals were being abused to redirect people to fake Adobe update sites The “updates” deployed different malware and backdoors Google has issued a warning about a Chinese state-sponsored hacking attack targeting users in real-time. The company’s cybersecurity arm, the Google Threat…
Read More
Dropbox password manager shutdown begins this week – here is what you need to do next
Dropbox is joining the list of companies shutting down password managers The mobile app will soon be shut down, with the browser extension following Users are recommended to move to another credential manager Dropbox will begin shutting down its password manager service this week as part of a phased discontinuation…
Read More
Citrix patches a trio of high-severity security bugs, so be on your guard
Citrix fixes three flaws in NetScaler ADC and NetScaler Gateway Among them is a critical-severity one used as a zero-day which allowed for RCE and DoS attacks Citrix has fixed three bugs in its NetScaler ADC and NetScaler Gateway instances, including a critical zero-day flaw which was apparently being abused…
Read More
Many bosses don’t believe their workers have good enough security awareness
Report find CISOs are less confident in their staff protecting their companies Nearly twice as many experienced a material data loss this year Many are worried about AI’s risks, some are set to use it to their benefits Barely more than half (57%) of Chief Information Security Officers (CISOs) believe…
Read More
Salesloft breached to steal OAuth tokens for Salesforce data-theft attacks
Salesloft was breached when OAuth tokens from SalesDrift were stolen Google tracked the threat actors as UNC6395 ShinyHunters claimed responsibility for the attack Revenue workflow platform Salesloft suffered a cyberattack which saw threat actors break in through a third-party and steal sensitive information. The company is using Drift, a conversational…
Read More
Hacker says they were able to download data on all 270,000 Intel employees – from an internal site
Intel staff records leaked through login flaws, exposing sensitive company information A single manipulated portal exposed over 270,000 Intel employee details Hardcoded credentials on internal portals raised serious security concerns Sensitive information about every Intel employee was reportedly available to anyone able to exploit weaknesses in the firm’s internal sites,…
Read More