A critical bug in Palo Alto Networks' PAN-OS software, specifically affecting its GlobalProtect feature, has set the cybersecurity world on alert. Identified as CVE-2024-3400, this zero-day flaw was first spotted by Volexity on April 10, and it can be used by attackers to execute arbitrary code
Cisco Duo recently announced the theft of SMS MFA logs for its service, which resulted from a breach affecting a third-party telephony provider. This incident, occurring on April 1, 2024, led to unauthorized access to sensitive customer data, including phone numbers, carriers, and metadata.
Roku has confirmed that a credential-stuffing attack has compromised approximately 576,000 user accounts. This attack follows a similar incident that occurred last month, which affected over 15,000 accounts. The latest round of malicious activity was detected due to Roku’s close monitoring of
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password protected database that contained over 700k documents belonging to Australia’s largest smoke alarm installation and service provider. The exposed database contained 762,856 documents and totaled
Proofpoint researchers have unveiled a sophisticated phishing campaign orchestrated by the notorious hacking group TA547, which uses a malicious PowerShell script that seems to be AI-written. The campaign, which specifically targeted German organizations, attempted to deliver Rhadamanthys malware,
Greylock McKinnon Associates, Inc. (GMA), a Boston consulting firm, experienced a data breach that exposed the Medicare information of 341,650 individuals. Originally detected on May 30, 2023, the breach resulted from a sophisticated cyberattack targeting sensitive data. Notifications regarding
Change Healthcare, an affiliate of UnitedHealth Group, is once again grappling with a ransomware threat. This development follows a recent incident where UnitedHealth Group allegedly shelled out $22 million to the Alphv/BlackCat gang to resolve a previous ransomware attack, as detailed in an
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password-protected database that contained names, phone numbers, and email addresses of nearly 300,000 taxi passengers in the UK and Ireland. The records belonged to Dublin-based iCabbi, a dispatch and fleet
Over 14 million internet browser cookies linked to UK consumers have been leaked onto the dark web. A recent study from NordVPN revealed the leak. This disclosure is part of a larger global issue, with more than 54 billion cookies found leaked worldwide, impacting users in 244
On the 1st of February 2024, the popular survey platform, SurveyLama, suffered a data breach, compromising 4.4 million users’ information. The information implicated in the breach includes users’ email addresses, names, passwords, and more. The creator of Have I Been Pwned, Troy Hunt, was