Broadcom has fixed a critical VMware vCenter Server vulnerability that attackers can exploit to gain remote code execution on unpatched servers via a network packet. […]
Construction firms breached in brute force attacks on accounting software
Hackers are brute-forcing passwords for highly privileged accounts on exposed Foundation accounting servers, widely used in the construction industry, to breach corporate networks. […]
Cloudflare outage cuts off access to websites in some regions
A rolling Cloudflare outage is impacting access to web sites worldwide, including BleepingComputer, with sites working in some regions and not others. […]
VMware Patches Remote Code Execution Flaw Found in Chinese Hacking Contest
VMware warned that an attacker with network access could send a specially crafted packet to execute remote code. CVSS severity score 9.8/10.
The post VMware Patches Remote Code Execution Flaw Found in Chinese Hacking Contest appeared first on SecurityWeek.
AT&T pays $13 million FCC settlement over 2023 data breach
The Federal Communications Commission (FCC) has reached a $13 million settlement with AT&T to resolve a probe into whether the telecom giant failed to protect customer data after a vendor’s cloud environment was breached three years ago. […]
CISA urges software devs to weed out XSS vulnerabilities
CISA and the FBI urged tech companies to review their software and eliminate cross-site scripting (XSS) vulnerabilities before shipping. […]
Intezer Raises $33M to Extend AI-Powered SOC Platform
Intezer is looking to tap into booming market for AI-powered tooling to address the severe shortage of skilled cybersecurity professionals.
The post Intezer Raises $33M to Extend AI-Powered SOC Platform appeared first on SecurityWeek.
Ransomware gangs now abuse Microsoft Azure tool for data theft
Ransomware gangs like BianLian and Rhysida increasingly use Microsoft’s Azure Storage Explorer and AzCopy to steal data from breached networks and store it in Azure Blob storage. […]
C/side Raises $6 Million to Secure the Browser Supply Chain
C/side has raised $6 million in a seed-stage funding round to help organizations protect against malicious browser third-party scripts.
The post C/side Raises $6 Million to Secure the Browser Supply Chain appeared first on SecurityWeek.
Hundreds Wounded After Pagers Detonate in Lebanon, Media and Security Officials Say
A Hezbollah official speculated that malware may have caused the pagers to heat up and explode.
The post Hundreds Wounded After Pagers Detonate in Lebanon, Media and Security Officials Say appeared first on SecurityWeek.