Zyxel Firewall Bug is Active and Being Used After PoC Exploit Demo Debut
Zyxel firewalls are currently (as of May 2022) under a cyberattack after a critical security flaw was disclosed last week, allowing unauthenticated, remote arbitrary code execution. The flaw, CVE-2020-9054, exists in the XML parser of Zyxel's network-attached storage...
‘Sysrv’ Botnet Targeting Recent Spring Cloud Gateway Vulnerability
Microsoft has discovered a new variant of the Sysrv botnet that includes a recent Spring Cloud Gateway vulnerability in its arsenal. Since at least late 2020, the Sysrv botnet has been active, attempting to exploit known security flaws in access interfaces in order to...
Novel Phishing Trick: Unusual Links to Trick Spam Filters
Researchers have identified a never-before-seen method for sneaking malicious links into email inboxes. A novel form of phishing takes advantage of a disparity between how browsers and email inboxes read web domains. According to a Monday report by Perception Point,...
Log4j Attack Surface Remains Massive
Four months ago, the remote code execution hole exposed in the Apache Log4j logging tool still had a wide range of potential victims. Using the Shodan search engine, Rezilion discovered more than 90,000 Internet-exposed servers with a vulnerable version of the...
Most Email Security Approaches Fail to Block Common Threats
Blog On a scale of one to ten, where ten is the maximum effectiveness, most security teams give their email security systems a rating of three or less. According to a recent Ponemon study, 89 percent of firms had experienced at least one successful email...
Defending Your Business Against Russian Cyber Warfare
As the West tightens its sanctions and supplies further assistance to Ukraine, we may anticipate Russian state-sponsored assaults to increase. The conflict in Ukraine is drawing attention from around the world. Russia has launched cyberattacks against Ukraine first,...
Former Uber Chief Security Officer To Face Wire Fraud Charges because of Failed Cybersecurity
Over the past few years, the road has not been smooth for former Uber Chief Security Officer Joseph Sullivan. On December 21, 2021, three additional wire fraud charges were added to the felony obstruction and misprision counts he was already facing due to his alleged...
World Password Day 2022: All You Want to Know
One of the most fun and effective ways to spread public awareness about a topic or issue is to commemorate it by devoting a specific day in its honor. With the help of powerful social media forums and passionate advocates, everything from puppies to pirates can be...
NVIDIA Data Breach: Information on Employee Data Theft
Blog NVIDIA, famous for designing graphics processing units and integrated circuits, recently became the latest victim of a serious cyberattack. Officials confirm that the incident occurred on February 23, 2022, resulting in the online leaking of employee...
Nearly Two-Thirds of Ransomware Victims Paid Ransoms in 2021
Leading research and marketing firm CyberEdge Group, which serves companies in the cybersecurity industry, just published its ninth Cyberthreat Defense Report (CDR). This report acts as the standard for gauging organizations’ security postures, documenting the...