Category: SecurityWeek

The US cybersecurity agency CISA warns that a recent SolarWinds Web Help Desk vulnerability has been exploited in the wild.

The post SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day appeared first on SecurityWeek.

ZDI details a zero-day named Copy2Pwn and tracked as CVE-2024-38213, which cybercriminals exploited to bypass MotW protections in Windows.

The post Copy2Pwn Zero-Day Exploited to Bypass Windows Protections appeared first on SecurityWeek.

Security experts are ratcheting up the urgency for Windows admins to patch a wormable, pre-auth remote code execution vulnerability in the Windows TCP/IP stack.

The post Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw appeared first on SecurityWeek.

Dragos has seen a significant increase in ransomware attacks on industrial organizations in Q2 2024 compared to the previous quarter.

The post Ransomware Attacks on Industrial Firms Surged in Q2 2024 appeared first on SecurityWeek.

SolarWinds has released a hotfix for a critical Java deserialization remote code execution vulnerability in Web Help Desk.

The post SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability appeared first on SecurityWeek.

Google says it blocked Iranian APT42 hackers from accessing the personal email accounts of individuals affiliated with the US elections.

The post Google Disrupts Iranian Hacking Activity Targeting US Presidential Election appeared first on SecurityWeek.

Palo Alto Networks has patched multiple vulnerabilities, including ones rated high severity, in several products.

The post Palo Alto Networks Patches Unauthenticated Command Execution Flaw in Cortex XSOAR appeared first on SecurityWeek.

Georgy Kavzharadze was sentenced to prison in the US for selling stolen financial, login, and personal information on an online cybercriminal marketplace.

The post Russian Sentenced to Prison in US for Selling Stolen Information appeared first on SecurityWeek.

AutoCanada has disclosed a disruptive cybersecurity incident after also being impacted by the recent CDK Global ransomware attack.

The post AutoCanada Hit by Cyberattack appeared first on SecurityWeek.

Google said an Iranian hacking group has tried to infiltrate the personal email accounts of roughly a dozen people linked to President Joe Biden and former President Donald Trump since May.

The post Google Confirms an Iranian Group Is Trying to Access Emails Linked to Both US Presidential Campaigns appeared first on SecurityWeek.