19 Aug 2021

US Census Bureau Slammed for 2020 Breach

The US Census Bureau has been heavily criticized by a government inspector for a 2020 breach in which the entity failed to implement a patch for a critical vulnerability. The attacker was not able to access the servers used for the 2020 census, however, they were able to modify user

Read More
19 Aug 2021

HolesWarm Malware Exploits Unpatched Windows, Linux Servers

Researchers at Tencent have warned of a botnet crypto miner that has already compromised 1,000 or more clouds since June. The crypto miner, called HolesWarm, leverages more than 20 different known vulnerabilities in Linux and Windows servers to break into cloud hosts. The botnet has been so successful at breaching

Read More
18 Aug 2021

Zero-Day Flaw Found in Fortinet’s FortiWeb WAF Technology

Yesterday, researchers at Rapid7 disclosed a new critical zero-day vulnerability uncovered in Fortinet’s FortiWeb Web application firewall technology. According to the security researchers, an attacker could exploit the bug to gain complete control of affected devices. The flaw is an OS command injection vulnerability that allows attackers to remotely execute

Read More
18 Aug 2021

Bug in Millions of Flawed IoT Devices Lets Attackers Eavesdrop

Security researchers have reported a critical flaw affecting tens of millions of IoT devices. According to the researchers, a remote attacker could leverage the vulnerability to eavesdrop on live audio or take control of the device. The flaw was found in ThroughTek’s Kalay network, which is used in 83 million

Read More
18 Aug 2021

Mozilla, MacArthur and Ford foundations unite to oppose Facebook ban on NYU disinformation research

Earlier this week, multiple high profile foundations including Mozilla, MacArthur, and Ford foundations joined forces to criticize Facebook for disabling the accounts of New York University researchers who were conducting an investigation into disinformation on the platform. Other organizations included in the criticism are the NetGain Partnership and the Omidyar

Read More
18 Aug 2021

Twitter to allow users in US, South Korea, and Australia to report misleading tweets

On Wednesday, Twitter announced that it will begin a test trial of a new feature that would allow users in the United States, South Korea, and Australia to report misleading tweets that may be spreading misinformation. The option will appear to users after clicking the button to report the tweet.

Read More
17 Aug 2021

100m T-Mobile Customer Records Purportedly Up for Sale

Security researchers have discovered a dark web seller offering 30 million T-Mobile customers’ Social Security and driver license numbers on an underground web forum. The vendor advertises the collection as a subset of the purported 100 million records contained in stolen databases. The records are being offered for just one

Read More
17 Aug 2021

Misconfigured Server Leaks US Terror Watchlist

Bob Diachenko, head of security research for Comparitech, stated that he discovered a configuration error that leaked a secret watchlist of suspected terrorists maintained by the FBI. Diachenko stated that he discovered the Terrorist Screening Center (TSC) list on July 19. The server was not fixed for several weeks despite

Read More
17 Aug 2021

Brazilian National Treasury hit with ransomware attack

Last Friday, the Brazilian government was allegedly a victim of a ransomware attack that targeted its National Treasury. A statement was released by the Ministry of Economy detailing initial measures that were taken to contain the impact of the cyberattack. The preliminary assessments of the attack have confirmed that there

Read More
16 Aug 2021

Islamic State Propaganda Networks are Thriving says Europol

Europol has warned that although official propaganda from the Islamic State has reportedly declined since 2020 due to disruptions from Western coalition forces, informal supporter networks are alive and well. The law enforcement agency detailed the key trends of last year, noting the persistence of terrorist content across multiple online

Read More