MediaTek, HPE and Dell release advisories to inform customers about potentially serious vulnerabilities found and patched in their products.
The post Dell, HPE, MediaTek Patch Vulnerabilities in Their Products appeared first on SecurityWeek.
Washington Attorney General Sues T-Mobile Over 2021 Data Breach
Washington State Attorney General Bob Ferguson has filed a lawsuit against T-Mobile over a 2021 data breach that impacted over 76 million consumers.
The post Washington Attorney General Sues T-Mobile Over 2021 Data Breach appeared first on SecurityWeek.
CISA Releases New Sector Specific Goals for IT and Product Design
Farewell to the Fallen: The Cybersecurity Stars We Lost Last Year
It’s time once again to pay our respects to the once-famous cybersecurity solutions whose usefulness died in the past year. The cybercriminal world collectively mourns the loss of these solutions and the easy access they provide to victim organizations. These solutions, though celebrated in their prime, succumbed to the twin forces of time and advancing threats. Much like a tribute to
CISA: No Federal Agency Beyond Treasury Impacted by BeyondTrust Incident
CISA says no federal agencies other than Treasury were impacted by the recent compromise of a BeyondTrust cloud-based service.
The post CISA: No Federal Agency Beyond Treasury Impacted by BeyondTrust Incident appeared first on SecurityWeek.
University’s Critical Infrastructure Ransomware Attack Tracker Reaches 2,000 Incidents
Temple University’s Critical Infrastructure Ransomware Attacks (CIRA) database now contains over 2,000 entries.
The post University’s Critical Infrastructure Ransomware Attack Tracker Reaches 2,000 Incidents appeared first on SecurityWeek.
China Protests US Sanctions for Its Alleged Role in Hacking, Complains of Foreign Hacker Attacks
China has slammed a decision by the US Treasury to sanction a Beijing-based cybersecurity company for its alleged role in multiple hacking incidents targeting critical infrastructure.
The post China Protests US Sanctions for Its Alleged Role in Hacking, Complains of Foreign Hacker Attacks appeared first on SecurityWeek.
New EAGERBEE Variant Targets ISPs and Governments with Advanced Backdoor Capabilities
Internet service providers (ISPs) and governmental entities in the Middle East have been targeted using an updated variant of the EAGERBEE malware framework.
The new variant of EAGERBEE (aka Thumtais) comes fitted with various components that allow the backdoor to deploy additional payloads, enumerate file systems, and execute commands shells, demonstrating a significant evolution.
“The key
The new variant of EAGERBEE (aka Thumtais) comes fitted with various components that allow the backdoor to deploy additional payloads, enumerate file systems, and execute commands shells, demonstrating a significant evolution.
“The key
CISA: No Wider Federal Impact from Treasury Cyber Attack, Investigation Ongoing
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday said there are no indications that the cyber attack targeting the Treasury Department impacted other federal agencies.
The agency said it’s working closely with the Treasury Department and BeyondTrust to get a better understanding of the breach and mitigate its impacts.
“The security of federal systems and the data they
The agency said it’s working closely with the Treasury Department and BeyondTrust to get a better understanding of the breach and mitigate its impacts.
“The security of federal systems and the data they
Moxa Alerts Users to High-Severity Vulnerabilities in Cellular and Secure Routers
Taiwan-based Moxa has warned of two security vulnerabilities impacting its cellular routers, secure routers, and network security appliances that could allow privilege escalation and command execution.
The list of vulnerabilities is as follows –
The list of vulnerabilities is as follows –
CVE-2024-9138 (CVSS 4.0 score: 8.6) – A hard-coded credentials vulnerability that could allow an authenticated user to escalate privileges and gain