A Mirai botnet variant has been found exploiting a newly disclosed security flaw impacting Four-Faith industrial routers since early November 2024 with the goal of conducting distributed denial-of-service (DDoS) attacks.
The botnet maintains approximately 15,000 daily active IP addresses, with the infections primarily scattered across China, Iran, Russia, Turkey, and the United States.
The U.S. government on Tuesday announced the launch of the U.S. Cyber Trust Mark, a new cybersecurity safety label for Internet-of-Things (IoT) consumer devices.
“IoT products can be susceptible to a range of security vulnerabilities,” the U.S. Federal Communications Commission (FCC) said. “Under this program, qualifying consumer smart products that meet robust cybersecurity standards will bear
Millions of email servers worldwide remain alarmingly vulnerable to cyberattacks due to a critical security oversight: the absence of Transport Layer Security (TLS) encryption.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-08 10:06:512025-01-08 10:06:51Millions of Email Servers Exposed Due to Missing TLS Encryption
The southern African telco is the latest entity on the continent to have its critical infrastructure hacked, and attackers release sensitive info online when Telecom Namibia refuses to negotiate.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three flaws impacting Mitel MiCollab and Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The list of vulnerabilities is as follows –
CVE-2024-41713 (CVSS score: 9.1) – A path traversal vulnerability in Mitel MiCollab that could allow an attacker
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-08 05:07:292025-01-08 05:07:29CISA Flags Critical Flaws in Mitel and Oracle Systems Amid Active Exploitation
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-08 05:07:292025-01-08 05:07:29Indian government websites are still redirecting users to scam sites
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Scammers Impersonate Authorities to Swipe OTPs with Remote Access Apps
/in General NewsSUMMARY Cybersecurity researchers at Group-IB have discovered a sophisticated refund scam where scammers are using remote access tools…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Mirai Botnet Variant Exploits Four-Faith Router Vulnerability for DDoS Attacks
/in General NewsA Mirai botnet variant has been found exploiting a newly disclosed security flaw impacting Four-Faith industrial routers since early November 2024 with the goal of conducting distributed denial-of-service (DDoS) attacks.
The botnet maintains approximately 15,000 daily active IP addresses, with the infections primarily scattered across China, Iran, Russia, Turkey, and the United States.
The Hacker News – Read More
Chrome 131, Firefox 134 Updates Patch High-Severity Vulnerabilities
/in General NewsChrome and Firefox updates released this week resolve high-severity vulnerabilities in the two popular browsers.
The post Chrome 131, Firefox 134 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek.
SecurityWeek – Read More
First Android Update of 2025 Patches Critical Code Execution Vulnerabilities
/in General NewsThis year’s first batch of monthly security updates for Android resolves 36 vulnerabilities, including critical remote code execution flaws.
The post First Android Update of 2025 Patches Critical Code Execution Vulnerabilities appeared first on SecurityWeek.
SecurityWeek – Read More
FCC Launches ‘Cyber Trust Mark’ for IoT Devices to Certify Security Compliance
/in General NewsThe U.S. government on Tuesday announced the launch of the U.S. Cyber Trust Mark, a new cybersecurity safety label for Internet-of-Things (IoT) consumer devices.
“IoT products can be susceptible to a range of security vulnerabilities,” the U.S. Federal Communications Commission (FCC) said. “Under this program, qualifying consumer smart products that meet robust cybersecurity standards will bear
The Hacker News – Read More
Millions of Email Servers Exposed Due to Missing TLS Encryption
/in General NewsMillions of email servers worldwide remain alarmingly vulnerable to cyberattacks due to a critical security oversight: the absence of Transport Layer Security (TLS) encryption.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Critical Vulnerabilities in Moxa Routers Allow Root Privilege Escalation
/in General NewsCritical security vulnerabilities have been found in Moxa cellular routers and network security appliances. Learn about CVE-2024-9138 &…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Ransomware Targeting Infrastructure Hits Telecom Namibia
/in General NewsThe southern African telco is the latest entity on the continent to have its critical infrastructure hacked, and attackers release sensitive info online when Telecom Namibia refuses to negotiate.
darkreading – Read More
CISA Flags Critical Flaws in Mitel and Oracle Systems Amid Active Exploitation
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three flaws impacting Mitel MiCollab and Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The list of vulnerabilities is as follows –
CVE-2024-41713 (CVSS score: 9.1) – A path traversal vulnerability in Mitel MiCollab that could allow an attacker
The Hacker News – Read More
Indian government websites are still redirecting users to scam sites
/in General NewsSome Indian government websites are still redirecting to links planted by scammers.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More