Two bugs in the web interface of a cloud storage system would allow authenticated threat actors to read, write, and even destroy backed up files. According to the report, these flaws reside in the enterprise-grade Fujitsu Eternus CS800 V8.1 solution. These problems were found by researchers at NCC Group, who…

A group of researchers managed to show that signals emitted by electronic devices can be identified and tracked individually. Experts at the University of California say that only a proper tracking tool is required to carry out this follow-up. Although the attack sounds simple, the researchers note that a threat…

Administrators of the Tenafly Public Schools, Bergen County, New Jersey, that the cybersecurity issue detected Thursday morning is a ransomware infection that blocked access to some computers on its networks. …

Researchers at security firm SentinelLabs report the detection of a new Chinese-speaking hacking group identified as Aoqin Dragon and which has been active since 2013. According to experts, this group focuses on cyber espionage against the government, educational, and telecommunications companies in Australia, Hong Kong, Singapore, and Vietnam. The main…

A recent report indicates that Microsoft Office applications could be exposed to homograph attacks based on internationalized domain names (IDNs). In a successful attack, a target user scrolling over a link in a email or Word or Excel document could be automatically redirected to a malicious domain. The report, by…

Information security specialists at Volexity have discovered a remote code execution (RCE) vulnerability that resides in the latest, fully patched versions of the Atlassian Confluence Server. Tracked as CVE-2022–26134, the flaw has already been notified to the company. The researchers described it as a zero-day flaw in Confluence Server and…

Specialists at Trend Micro analyzed a set of CMD-based ransomware samples that appear to have advanced capabilities for stealing sensitive information, bypassing remote desktop connections, and a feature to spread through physical drives and emails alike. Identified as YourCyanide, this new ransomware integrates documents from PasteBin, Discord, and Microsoft Office…

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a security alert about Karakurt, a cybercriminal group that extracts data from affected organizations and threatens to sell or leak it on the dark web if victims don’t pay a ransom. This malicious operation is characterized by not using malware…

It is well known that has implemented sophisticated technology to monitor private messages sent through Facebook and Instagram to identify patterns of harmful content such as child pornography, harassment the or sale of narcotics. …