Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation

/in

Quarkslab finds serious, remotely exploitable vulnerabilities in EDK II, the de-facto open source reference implementation of the UEFI spec.

The post Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation appeared first on SecurityWeek.

SecurityWeek – ​Read More

180k Internet-Exposed SonicWall Firewalls Vulnerable to DoS Attacks, Possibly RCE

/in

Two DoS vulnerabilities patched in 2022 and 2023 haunt nearly 180,000 internet-exposed SonicWall firewalls.

The post 180k Internet-Exposed SonicWall Firewalls Vulnerable to DoS Attacks, Possibly RCE appeared first on SecurityWeek.

SecurityWeek – ​Read More

Hacker Conversations: HD Moore and the Line Between Black and White

/in

SecurityWeek talked to HD Moore, best known as the founder and original developer of Metasploit.

The post Hacker Conversations: HD Moore and the Line Between Black and White appeared first on SecurityWeek.

SecurityWeek – ​Read More

Over 178K SonicWall Firewalls Vulnerable to DoS, Potential RCE Attacks

/in

Attackers can exploit these vulnerabilities to force affected firewalls into maintenance mode, impacting their standard functionality and VPN access to corporate networks.

Cyware News – Latest Cyber News – ​Read More

Tsurugi Linux Tailors User Experience for Digital Forensics and OSINT Investigations

/in

Tsurugi Linux offers a user-friendly interface with a logical sequence of forensic analysis tools, including support for live forensics, post-mortem analysis, digital evidence acquisition, malware analysis, OSINT, and computer vision activities.

Cyware News – Latest Cyber News – ​Read More

Researchers Uncover Major Surge in Global Botnet Activity

/in

The surge in activity was attributed to the use of cheap or free cloud and hosting servers by attackers to create botnet launch pads. These new botnets focused on scanning global internet ports and showed signs of potential email server exploits.

Cyware News – Latest Cyber News – ​Read More

Tura Scandinavia AB Encounters Another Cyberattack Following Intrusion in December

/in

Tura Scandinavia AB has allegedly been targeted by the LockBit ransomware group, with claims of unauthorized access to the company’s network and the sale of login credentials on the dark web.

Cyware News – Latest Cyber News – ​Read More

Anonymous Sudan Claims London Internet Exchange Attack Over Yemen Strikes

/in

By Deeba Ahmed

Anonymous Sudan is a pro-Russia hacktivist group, and their emergence aligns with the rise of other pro-Russian cyber actors since the beginning of the Ukraine war.

This is a post from HackRead.com Read the original post: Anonymous Sudan Claims London Internet Exchange Attack Over Yemen Strikes

Hackread – Latest Cybersecurity News, Press Releases & Technology Today – ​Read More

Windows Defender SmartScreen Vulnerability Exploited with Phemedrone Stealer

/in

By Deeba Ahmed

Attackers Leveraging Windows Vulnerability in Phemedrone Malware Campaign for Enhanced Stealth.

This is a post from HackRead.com Read the original post: Windows Defender SmartScreen Vulnerability Exploited with Phemedrone Stealer

Hackread – Latest Cybersecurity News, Press Releases & Technology Today – ​Read More

British Cosmetics Retailer Lush Investigating Cyber Attack

/in

By Waqas

From Bubbles to Bytes: Lush investigates ‘cyber incident’ without giving any substantial information to customers.

This is a post from HackRead.com Read the original post: British Cosmetics Retailer Lush Investigating Cyber Attack

Hackread – Latest Cybersecurity News, Press Releases & Technology Today – ​Read More