Unpatched Zimbra RCE bug exploited by attackers (CVE-2022-41352)
A still unpatched vulnerability (CVE-2022-41352) in Zimbra Collaboration is being exploited by attackers to achieve remote code execution on vulnerable servers. About the vulnerability Zimbra Collaboration (formerly Zimbra Collaboration Suite) is clo.....»»
How a Windows zero-day was exploited in the wild for months (CVE-2024-43451)
CVE-2024-43451, a Windows zero-day vulnerability for which Microsoft released a fix on November 2024 Patch Tuesday, has been exploited since at least April 2024, ClearSky researchers have revealed. About the vulnerability CVE-2024-43451 affects all s.....»»
YouTube Premium users are accidentally being shown ads
It seems that due to a potential bug, YouTube Premium users are being shown ads when they shouldn’t be seeing any. The post YouTube Premium users are accidentally being shown ads appeared first on Phandroid. If you’re not a fan of ads.....»»
Zero-days dominate top frequently exploited vulnerabilities
A joint report by leading cybersecurity agencies from the U.S., UK, Canada, Australia, and New Zealand has identified the most commonly exploited vulnerabilities of 2023. Zero-day vulnerabilities on the rise The advisory highlights that malicious cyb.....»»
Prime time for cicadas: What a once-in-1,547-year bug population surge tells us about the nature of reality
It's a big year in America—for wildlife as well as for politics. I'm talking about periodical cicadas......»»
GoIssue phishing tool targets GitHub developer credentials
Researchers discovered GoIssue, a new phishing tool targeting GitHub users, designed to extract email addresses from public profiles and launch mass email attacks. Marketed on a cybercrime forum, GoIssue allows attackers to send bulk emails while kee.....»»
Amazon to phase out Freevee, but there’s still a way to watch for free
Amazon is phasing out Freevee, the ad-supported video streaming platform that launched in 2019 as IMDb Freedive before rebranding as Amazon Freevee in 2022......»»
Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039)
November 2024 Patch Tuesday is here, and Microsoft has dropped fixes for 89 new security issues in its various products, two of which – CVE-2024-43451 and CVE-2024-49039 – are actively exploited by attackers. The exploited vulnerabilities.....»»
Tax whistleblower laws boost state revenue: Study
The federal tax gap—money people and companies owe Uncle Sam but fail to pay on time—has climbed to historic highs: $696 billion in 2022, according to the IRS. It's money that—if recouped—could fund infrastructure or education or pay down gov.....»»
Critical Palo Alto Networks Expedition bug exploited (CVE-2024-5910)
A vulnerability (CVE-2024-5910) in Palo Alto Networks Expedition, a firewall configuration migration tool, is being exploited by attackers in the wild, the Cybersecurity and Infrastructure Security Agency (CISA) confirmed on Thursday. About CVE-2024-.....»»
How to fix iPhone Notes disappearing after iCloud terms & conditions update
When iPhone users accepted new iCloud terms, some were shocked to see all their Notes disappear from the app. Here's how to get them back.Apple Notes on iPhoneA recent bug affecting Apple's Notes app has left some iPhone users concerned after their n.....»»
Industrial companies in Europe targeted with GuLoader
A recent spear-phishing campaign targeting industrial and engineering companies in Europe was aimed at saddling victims with the popular GuLoader downloader and, ultimately, a remote access trojan that would permit attackers to steal information from.....»»
All your iPhone notes gone in Apple Notes app? Here’s the fix
Some iPhone users are reporting a scary bug with the Notes app on iPhone. After agreeing to new iCloud terms and conditions as prompted by the system, the Notes app appears to disconnect from iCloud and instead presents users with a screen of zero no.....»»
Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418)
Cisco has fixed a critical command injection vulnerability (CVE-2024-20418) affecting its Ultra-Reliable Wireless Backhaul (URWB) Access Points that can be exploited via a HTTP requests and allows complete compromise of the devices. There are no work.....»»
How AI will shape the next generation of cyber threats
In this Help Net Security interview, Buzz Hillestad, CISO at Prismatic, discusses how AI’s advancement reshapes cybercriminal skillsets and lowers entry barriers for potential attackers. Hillestad highlights that, as AI tools become more access.....»»
Climate change is contributing to drought in the American West even without rainfall deficits, scientists find
Higher temperatures caused by anthropogenic climate change made an ordinary drought into an exceptional drought that parched the American West from 2020–2022. A study by UCLA and National Oceanic and Atmospheric Administration climate scientists ha.....»»
Food security in Africa: Managing water will be vital in a rapidly growing region
Sub-Saharan Africa's population is growing at 2.7% per year and is expected to reach two billion by the year 2050. The region's urban population is growing even faster: it was at 533 million in 2023, a 3.85% increase from 2022......»»
Volcanic ash as a source of nutrients: How the Hunga Tonga eruption affected ecosystems in the South Pacific
The eruption of Hunga Tonga-Hunga Ha'apai (HTHH) in January 2022 ejected about 2.9 billion tons of volcanic material into the atmosphere and across the South Pacific. In early 2022, a scientific expedition (GEOTRACES GP21) investigated the impact of.....»»
GoZone ransomware accuses and threatens victims
A new ransomware dubbed GoZone is being leveraged by attackers that don’t seem to be very greedy: they are asking the victims to pay just $1,000 in Bitcoin if they want their files decrypted. The GoZone HTML ransom note (Source: SonicWall) The.....»»
Suspect arrested in Snowflake data-theft attacks affecting millions
Threat actor exploited account credentials swept up by infostealers years earlier. Canadian authorities have arrested a man on suspicion he breached hundreds of accounts belonging.....»»
Another annoying bug is spoiling the fun in Windows 11 24H2
A new glitch in Windows 11 24H2 results in strange behavior for the File File Explorer, making the app difficult to use. Here are the details......»»