Russian Midnight Blizzard Breached UK Home Office via Microsoft

/in

Russian hacking group Midnight Blizzard breached the UK Home Office, stealing sensitive data. Learn how they exploited supply…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Cisco Warns of Critical RCE Zero-Days in End of Life IP Phones

/in

Cisco has issued a warning about critical remote code execution zero-days affecting the web-based management interface of the Small Business SPA 300 and SPA 500 series IP phones, which are no longer supported.

Cyware News – Latest Cyber News – ​Read More

North Korea Kimsuky Launch Phishing Attacks on Universities

/in

Cybersecurity analysts have uncovered critical details about the North Korean advanced persistent threat (APT) group Kimsuky, which has been targeting universities as part of its global espionage operations.

Cyware News – Latest Cyber News – ​Read More

CISA Warns of Hackers Abusing Cisco Smart Install Feature

/in

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has advised organizations to disable the legacy Cisco Smart Install (SMI) feature due to recent attacks exploiting it.

Cyware News – Latest Cyber News – ​Read More

Russian Spies Hacked UK Government Systems Earlier This Year, Stole Data and Emails

/in

Russian spies hacked UK government systems earlier this year, stealing data and emails in a nation-state attack. The breach targeted the Home Office’s systems, which had not been previously reported.

Cyware News – Latest Cyber News – ​Read More

Microsoft Warns of Unpatched Office Vulnerability Leading to Data Breaches

/in

Microsoft has disclosed an unpatched zero-day in Office that, if successfully exploited, could result in unauthorized disclosure of sensitive information to malicious actors.
The vulnerability, tracked as CVE-2024-38200 (CVSS score: 7.5), has been described as a spoofing flaw that affects the following versions of Office –

Microsoft Office 2016 for 32-bit edition and 64-bit editions
Microsoft

The Hacker News – ​Read More

Google Researchers Found Nearly a Dozen Flaws in Popular Qualcomm Software for Mobile GPUs

/in

The vulnerabilities, which have been patched, may have novel appeal to attackers as an avenue to compromising phones.

Security Latest – ​Read More

Experts Uncover Severe AWS Flaws Leading to RCE, Data Theft, and Full-Service Takeovers

/in

Cybersecurity researchers have discovered multiple critical flaws in Amazon Web Services (AWS) offerings that, if successfully exploited, could result in serious consequences.
“The impact of these vulnerabilities range between remote code execution (RCE), full-service user takeover (which might provide powerful administrative access), manipulation of AI modules, exposing sensitive data, data

The Hacker News – ​Read More

Intel has news – good, bad and ugly – about Raptor Lake bug patch. Here’s what to know

/in

Users must download and install a BIOS update as the patch won’t be made available via Windows Update.

Latest stories for ZDNET in Security – ​Read More

Australian Enterprises Coming 4th in 2024 Global Survey of Generative AI Usage

/in

Businesses in China, the U.K. and the U.S. are using generative AI more than Australia. But the Aussies lead in understanding, planning for, and implementing generative AI use policies.

Security | TechRepublic – ​Read More