TP-Link fixes critical RCE bug in popular C5400X gaming router (www.bleepingcomputer.com)
The TP-Link Archer C5400X gaming router is vulnerable to security flaws that could enable an unauthenticated, remote attacker to execute commands on the device.
Hackers target Check Point VPNs to breach enterprise networks (www.bleepingcomputer.com)
Threat actors are targeting Check Point Remote Access VPN devices in an ongoing campaign to breach enterprise networks, the company warned in a Monday advisory.
Sav-Rx discloses data breach impacting 2.8 million Americans (www.bleepingcomputer.com)
Prescription management company Sav-Rx is warning over 2.8 million people in the United States that it suffered a data breach, stating that their personal data was stolen in a 2023 cyberattack.
Cencora data breach exposes US patient info from 11 drug companies (www.bleepingcomputer.com)
Indian man stole $37 million in crypto using fake Coinbase Pro site (www.bleepingcomputer.com)
An Indian national pleaded guilty to wire fraud conspiracy for stealing over $37 million through a fake Coinbase website used to steal credentials....
Microsoft: Windows 24H2 will remove Cortana and WordPad apps (www.bleepingcomputer.com)
Microsoft says the Cortana, Tips, and WordPad applications will be automatically removed on systems upgraded to the upcoming Windows 11 24H2 release.
ICQ messenger shuts down after almost 28 years (www.bleepingcomputer.com)
Hacker defaces spyware app’s site, dumps database and source code (www.bleepingcomputer.com)
Microsoft's new Windows 11 Recall is a privacy nightmare (www.bleepingcomputer.com)
State hackers turn to massive ORB proxy networks to evade detection (www.bleepingcomputer.com)
Microsoft outage affects Bing, Copilot, DuckDuckGo and ChatGPT internet search (www.bleepingcomputer.com)
Northern Ireland police faces £750k fine after exposing staff info (www.bleepingcomputer.com)
UK’s Information Commissioner Office (ICO) has announced the intention to impose a fine of £750,000 ($954,000) on the Police Service of Northern Ireland (PSNI) for exposing the entire workforce’s personal details by inadvertently publishing a spreadsheet file online.
LockBit says they stole data in London Drugs ransomware attack (www.bleepingcomputer.com)
cross-posted from: lemmy.zip/post/15967176...
LockBit says they stole data in London Drugs ransomware attack (www.bleepingcomputer.com)
Today, the LockBit ransomware gang claimed they were behind the April cyberattack on Canadian pharmacy chain London Drugs and is now threatening to publish stolen data online after allegedly failed negotiations.
Intercontinental Exchange to pay $10M SEC penalty over VPN breach (www.bleepingcomputer.com)
Western Sydney University data breach exposed student data (www.bleepingcomputer.com)
Western Sydney University (WSU) has notified students and academic staff about a data breach after threat actors breached its Microsoft 365 and Sharepoint environment.
New BiBi Wiper version also destroys the disk partition table (www.bleepingcomputer.com)
A new version of the BiBi Wiper malware is now deleting the disk partition table to make data restoration harder, extending the downtime for targeted victims.
Critical Fluent Bit flaw impacts all major cloud providers (www.bleepingcomputer.com)
A critical Fluent Bit vulnerability that can be exploited in denial-of-service and remote code execution attacks impacts all major cloud providers and many technology giants.
Windows 11 Recall AI feature will record everything you do on your PC (www.bleepingcomputer.com)
Microsoft has announced a new AI-powered feature for Windows 11 called ‘Recall,’ which records everything you do on your PC and lets you search through your historical activities.
OmniVision discloses data breach after 2023 ransomware attack (www.bleepingcomputer.com)
The California-based imaging sensors manufacturer OmniVision is warning of a data breach after the company suffered a Cactus ransomware attack last year.
Zoom adds post-quantum end-to-end encryption to video meetings (www.bleepingcomputer.com)
Zoom has announced the global availability of post-quantum end-to-end encryption (E2EE) for Zoom Meetings, with Zoom Phone and Zoom Rooms to follow soon.
American Radio Relay League cyberattack takes Logbook of the World offline (www.bleepingcomputer.com)
cross-posted from: infosec.pub/post/12513834...
QNAP QTS zero-day in Share feature gets public RCE exploit (www.bleepingcomputer.com)
An extensive security audit of QNAP QTS, the operating system for the company’s NAS products, has uncovered fifteen vulnerabilities of varying severity, with eleven remaining unfixed.
Ransomware gang targets Windows admins via PuTTy, WinSCP malvertising (www.bleepingcomputer.com)
A ransomware operation targets Windows system administrators by taking out Google ads to promote fake download sites for Putty and WinSCP.