Stay informed with Security World Trend Now! Discover the latest security trends, technologies, and strategies to protect your data, networks, and digital identity. Get expert insights and practical advice for ensuring your online safety. Explore now!
New Smartphone Vulnerability: Hackers Could Track User Location Introduction A newly discovered vulnerability in text messaging has raised concerns about the potential for hackers to track user locations. Evangelos Bitsikas, a Ph.D. student at Northeastern University, and his research group have found a way to exploit this vulnerability using machine learning. This issue has serious…
Two Vulnerabilities in Ubuntu Linux Expose 40% of Cloud Workloads to Attackers The “GameOverlay” Flaws Researchers from cloud security firm Wiz have discovered two vulnerabilities in the Ubuntu implementation of the OverlayFS module. These flaws, tracked as CVE-2023-2640 and CVE-2023-32629 and named “GameOverlay” by the researchers, allow attackers to execute code with root privileges on…
Cybercrime: FBI Warns of Unparalleled Threat from China and AI Cybercrime: FBI Warns of Unparalleled Threat from China and AI By July 26, 2023 The FBI has issued a stark warning about the imminent threat posed by China‘s rapid development of artificial intelligence (AI). FBI Director Christopher Wray and Assistant Director, Cyber Division, Bryan Vorndran…
Vulnerabilities Over 20,000 Citrix Appliances Vulnerable to New Exploit Overview A recent report by cybersecurity firm Bishop Fox has revealed that over 20,000 Citrix appliances are vulnerable to a new exploit technique targeting a zero-day vulnerability, CVE-2023-3519. The exploit takes advantage of a critical-severity bug in Citrix Application Delivery Controller (ADC) and Gateway, allowing attackers…
MOVEit Hack Could Earn Cybercriminals $100M as Number of Confirmed Victims Grows Introduction The Cl0p ransomware gang, responsible for the recent MOVEit Hack, could potentially earn up to $100 million from the attack, according to experts. The number of confirmed victims of the attack is steadily increasing, with nearly 400 organizations affected so far. Ransomware…
The Growing Importance of Cybersecurity The Threat Landscape: Malware, Phishing, and More In an age where technology permeates every aspect of our lives, protecting our data and devices from cyber threats has become an imperative. Malware, phishing, and other forms of cyberattacks are increasingly prevalent, targeting both individuals and organizations alike. These attacks can have…
**Data Breaches: Cosmetics Giant Estée Lauder Targeted by Two Ransomware Groups** *By * In a recent cybersecurity incident, Estée Lauder, the renowned cosmetics giant, disclosed a data breach. The company confirmed that an unauthorized third party had gained access to some of its systems and obtained data. While the nature and scope of the compromised…
Threats Cloudflare reports ‘alarming surge’ in DDoS sophistication, escalation in recent months By AJ Vicens, July 18, 2023
Vulnerabilities in Adobe ColdFusion Exploited in Attacks Background Last week, Adobe disclosed three critical vulnerabilities in its ColdFusion software, two of which appear to have been exploited in the wild. The vulnerabilities are CVE-2023-29298, an improper access control issue, CVE-2023-29300, a deserialization issue, and CVE-2023-38203, another deserialization issue. While there is no evidence that CVE-2023-29300…
Industrial PLC Vulnerabilities Threaten Critical Infrastructure Introduction Two vulnerabilities have recently been discovered in industrial programmable logic controllers (PLCs) from Rockwell Automation, posing a significant threat to critical infrastructure and industrial environments. These vulnerabilities, located in the communication modules of the PLCs, can be exploited through malicious common industrial protocol (CIP) messages. The potential consequences…