The vulnerability, CVE-2024-39717, allows administrators to upload a malicious file disguised as a PNG image through the “Change Favicon” feature in Versa Director’s GUI.
Cyware News – Latest Cyber News – Read More
YouTube has launched an AI tool to help users recover hacked accounts more easily. The AI chatbot called “support assistant” will guide users through the process of securing their login and recovering their account.
Cyware News – Latest Cyber News – Read More
Meta Platforms revealed an Iranian hacker group targeting global political figures on WhatsApp. The Iranian state-sponsored threat actor APT42 used WhatsApp accounts to target individuals in Israel, Palestine, Iran, the U.K., and the U.S.
Cyware News – Latest Cyber News – Read More
Equiniti Trust Company, a financial services company, has been fined $850,000 by the Securities and Exchange Commission for failing to protect customer assets in two separate cyberattacks that resulted in the theft of over $6.6 million.
Cyware News – Latest Cyber News – Read More
As per GetApp’s 2024 Executive Cybersecurity Report, 72% of cybersecurity professionals in the US have reported attacks on senior executives in the past 18 months, with AI-generated deepfakes playing a role in 27% of these incidents.
Cyware News – Latest Cyber News – Read More
SolarWinds has fixed another critical bug in Web Help Desk, known as CVE-2024-28987. This flaw involves hardcoded credentials that can be exploited by remote unauthenticated users to access internal functions and alter data.
Cyware News – Latest Cyber News – Read More
Patelco Credit Union has confirmed a data breach impacting many individuals after the RansomHub ransomware group stole some databases.
The post Patelco Credit Union Says Breach Impacts 726k After Ransomware Gang Auctions Data appeared first on SecurityWeek.
SecurityWeek – Read More
Two security vulnerabilities have been disclosed in the open-source Traccar GPS tracking system that could be potentially exploited by unauthenticated attackers to achieve remote code execution under certain circumstances.
Both the vulnerabilities are path traversal flaws and could be weaponized if guest registration is enabled, which is the default configuration for Traccar 5, Horizon3.ai
The Hacker News – Read More
Cybercriminals are continuously evolving their tactics, emphasizing the need for organizations to have continuous monitoring to detect suspicious activities, according to a report by Malwarebytes.
Cyware News – Latest Cyber News – Read More
The increasing connectivity of airplanes to data networks has prompted regulators to consider cybersecurity threats from various sources, including maintenance laptops, airport networks, wireless sensors, and satellite communications.
Cyware News – Latest Cyber News – Read More