-
![Pirated Windows 10]()
Malicious Trojan Program Found in Pirated Windows 10
The cybersecurity firm Doctor Web recently uncovered a malicious clipper program in several unofficial Windows 10 builds that have been circulated through torrent trackers. The Trojan, named Trojan.Clipper.231, has been found to replace cryptocurrency wallet addresses in the clipboard with addresses controlled by the attackers. To date, it has been reported that the malefactors have…
-
![Data Breach School]()
Minnesota Students’ Data Compromised Amidst Global MOVEit Software Vulnerability
MINNEAPOLIS, MN – The Minnesota Department of Education (MDE) has reported a significant data breach affecting one of its servers. The breach is linked to a worldwide cyber-security attack on the MOVEit software, which is widely used by various companies and government agencies for transferring files. The breach was identified on May 31 when Minnesota…
-
![Honda power equipments]()
Honda’s Power Equipment eCommerce Platform Compromised Through Vulnerable API
In a significant revelation, Honda’s power equipment, marine, and lawn & garden dealer eCommerce platform has been compromised due to a vulnerable password reset API. The hacker managed to access all data on the platform, including customer orders, dealer websites, dealer users/accounts, dealer emails, and customer emails. The hacker also potentially gained access to the…
-
![]()
Cisco Releases Security Updates for Critical Vulnerabilities in Expressway Series and TelePresence VCS
Cisco has released critical software updates to address multiple vulnerabilities discovered in the Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS). According to the advisory published by Cisco on June 7, 2023, these vulnerabilities could allow an authenticated attacker with Administrator-level read-only credentials to escalate their privileges to Administrator with read-write credentials on…
-
![]()
Over 5.8 Million Affected by Data Breach at PharMerica Corporation
Louisville, KY — PharMerica Corporation, a renowned healthcare organization, has disclosed a massive data breach affecting 5,815,591 individuals. The breach, attributed to an external hacking incident, occurred on March 12 and 13, 2023, and was discovered on March 21, 2023. PharMerica Corporation is based in Louisville, Kentucky, and provides pharmacy services across the country. The…
-
![Data Breach School]()
Major Data Breach Hits Pearland Independent School District
Pearland, Texas – Pearland Independent School District, one of the largest education institutions in the city, has suffered a significant data breach, as per a formal notification submitted to the Maine Attorney General Office. The hack has reportedly affected 55,486 individuals, including students, staff, and parents. Pearland Independent School District, headquartered at 1928 N. Main…
-
![]()
Critical SQL Injection Vulnerability Uncovered in MOVEit Transfer
Progress Software Corporation has recently disclosed a critical vulnerability in its MOVEit Transfer web application, urging users to take immediate action to mitigate the risk. The vulnerability, officially designated as CVE-2023-34362, is an SQL Injection vulnerability that could potentially lead to escalated privileges and unauthorized access. It affects versions prior to 2021.0.6 (13.0.6), 2021.1.4 (13.1.4),…
-
![]()
Novel Phishing Technique Utilizes Browser File Archiver Simulation on New .zip Domain
In light of Google’s recent release of new top-level domains (TLDs) like .dad, .phd, .mov and .zip, there have been rising concerns within the security community over TLDs that can easily be mistaken for file extensions. This report explores a phishing technique that utilizes these concerns, specifically exploiting the .zip TLD to simulate a file…
-
![]()
Barracuda Networks Patches Zero-day Vulnerability In Email Security Gateway Appliance
Barracuda Networks has discovered and patched a significant vulnerability in its Email Security Gateway appliance (ESG) this week. The cyber defense company acknowledged the existence of this vulnerability, coded CVE-2023-2868, on May 19, 2023. The security issue was located within a module that screens the attachments of incoming emails on ESG appliances. The flaw has…
-
![]()
Capital One Discloses Data Breach Impacting Over 16,000 Customers
MCLEAN, VA – In a recent development, Capital One has confirmed a data breach that compromised the personal information of 16,779 individuals. The breach was discovered on April 26, 2023, having occurred between February 1 and February 4 of the same year. Adam Cohen, Associate General Counsel at Capital One, submitted a notification of the…
