Wormhole platform lost a whopping $326 million worth of crypto following the dis...

InsydeH2O UEFI firmware detected with 23 high severity vulnerabilities mostly re...

ESET addresses a high severity local privilege escalation vulnerability tracked ...

Cryptocurrency

DeFi

Exploit

Wormhole platform lost around $326 million in crypto following the exploitation ...

Wormhole platform lost a whopping $326 million worth of crypto following the discovery of an exploit, making it the second-largest DeFi hack... ...

03-Feb-2022

3 min read

Firmware

InsydeH2O

UEFI

UEFI firmware from InsydeH2O detected with two dozen critical vulnerabilities im...

InsydeH2O UEFI firmware detected with 23 high severity vulnerabilities mostly related to System Management Mode (SMM) software...

02-Feb-2022

4 min read

Antivirus

AMSI

Windows

ESET products vulnerable to a privilege escalation flaw allowing access to Windo...

ESET addresses a high severity local privilege escalation vulnerability tracked as CVE-2021-37852 impacting their multiple products on systems running Windows 10 and later or Windows Server 2016 and above... ...

01-Feb-2022

4 min read

S3 Bucket

AWS

Airports

Misconfigure AWS S3 bucket exposed 3 TB records of airport employees

Over a million files were exposed from one of the misconfigured AWS S3 buckets belonging to Securitas that put records of 3 TB airport employees at stake......

01-Feb-2022

2 min read

Russia

Gamaredon

Payload

Gamaredon Russian hackers deployed 8 different malware payloads against Ukrainia...

Gamaredon, Russia-linked hackers directly operated by FSB, we're reportedly spotted in deploying eight custom binaries in cyberespionage operations against Ukrainian entities... ...

31-Jan-2022

3 min read

Privilege Escalation

Exploit

Windows 10

Windows local privilege elevation vulnerability allows admin access over Windows...

Security researchers disclose exploits of Windows local privilege elevation vulnerability that lets threat actors gain admin privilege access over Windows 10......

31-Jan-2022

2 min read

Data Center

Remote Access

Security researchers discovered over 20,000 data center management systems compr...

Researchers have found over 20,000 instances of publicly exposed data center infrastructure management (DCIM) software that monitor devices, HVAC control systems, and power distribution units......

29-Jan-2022

1 min read

Azure

DDoS Attack

Asia

Microsoft Azure DDoS protection platform mitigated a record breaking 3.47 Tbps D...

Asian Azure customers targeted by one of the largest DDoS attack of all time reported at 3.47 Tbps with a packet rate of 340 million pps......

28-Jan-2022

4 min read

Scamware

Android

Dark Herring

Dark Herring malware targeted over 105M android users in a app subscription frau...

Android users are falling prey to an active app subscription based fraud campaign involving a newly emerged Dark Herring malware...

27-Jan-2022

4 min read

Linux encryptor

LockBit

VMware ESXi

VMware ESXi servers targeted by a newly evolved Linux encryptor of LockBit ranso...

LockBit ransomware group came up with a new Linux encryptor following the discovery of previous attacks on the encryption of VMware ESXi virtual machines... ...

27-Jan-2022

4 min read