Researchers discovered and published details of an XSS attack that could potentially impact millions of websites around the world.
The post Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw appeared first on SecurityWeek.
Category Added in a WPeMatico Campaign
Acronis Product Vulnerability Exploited in the Wild
Acronis warns of a critical-severity Acronis Cyber Infrastructure (ACI) vulnerability being exploited in attacks.
The post Acronis Product Vulnerability Exploited in the Wild appeared first on SecurityWeek.
4.3 Million Impacted by HealthEquity Data Breach
HealthEquity says the personal and health information of 4.3 million individuals was compromised in a data breach.
The post 4.3 Million Impacted by HealthEquity Data Breach appeared first on SecurityWeek.
SecurityWeek Analysis: 178 Cybersecurity M&A Deals Announced in First Half of 2024
178 cybersecurity M&A deals were announced in the first half of 2024, the smallest half year number since SecurityWeek started tracking them.
The post SecurityWeek Analysis: 178 Cybersecurity M&A Deals Announced in First Half of 2024 appeared first on SecurityWeek.
Selenium Grid Instances Exploited for Cryptomining
Wiz has detailed SeleniumGreed, a campaign in which threat actors target exposed Selenium Grid instances for cryptomining.
The post Selenium Grid Instances Exploited for Cryptomining appeared first on SecurityWeek.
IAM for MSPs Provider Evo Security Raises $6 Million
TechOperators leads a $6 million Series A funding round for Evo Security, a provider of IAM solutions for MSPs.
The post IAM for MSPs Provider Evo Security Raises $6 Million appeared first on SecurityWeek.
Progress Patches Critical Telerik Report Server Vulnerability
Progress Software calls attention to a critical remote code execution flaw in the Telerik Report Server product.
The post Progress Patches Critical Telerik Report Server Vulnerability appeared first on SecurityWeek.
Threat Actors Exploit Fresh ServiceNow Vulnerabilities in Attacks
Threat actors have started exploiting critical-severity vulnerabilities in ServiceNow shortly after public disclosure.
The post Threat Actors Exploit Fresh ServiceNow Vulnerabilities in Attacks appeared first on SecurityWeek.
In Other News: FBI Cyber Action Team, Pentagon IT Firm Leak, Nigerian Gets 12 Years in Prison
Noteworthy stories that might have slipped under the radar: FBI article on agency’s Cyber Action Team, data of Pentagon IT provider Leidos leaked, Nigerian cybercriminal sentenced to 12 years in prison.
The post In Other News: FBI Cyber Action Team, Pentagon IT Firm Leak, Nigerian Gets 12 Years in Prison appeared first on SecurityWeek.
US Offers $10 Million Reward for Information on North Korean Hacker
The US is offering a reward of up to $10 million for information on Rim Jong Hyok, a member of the North Korean hacking group APT45.
The post US Offers $10 Million Reward for Information on North Korean Hacker appeared first on SecurityWeek.