Cybersecurity
Category Added in a WPeMatico Campaign
Citrix pushed for customers to upgrade to the latest versions of NetScaler ADC and NetScaler Gateway on Monday, after learning about incidents consistent with session hijacking and credible reports of targeted attacks against a critical vulnerability. Citrix released patches to address the vulnerability, CVE-2023-4966, on Oct. 10, and warned that exploitation of the flaw can […]
Security researchers have discovered what they believe may be a government attempt to covertly wiretap an instant messaging service in Germany — an attempt that was blown because the potential intercepting authorities failed to reissue a TLS certificate. The suspected man-in-the-middle attack was identified when the administrator of jabber.ru, the largest Russian XMPP service, received […]
Ransomware activity reached an all-time high in September, with 514 attacks recorded. The previous record was in March 2023, but this new surge was led by different threat groups. LockBit 3.0, LostTrust, and BlackCat were the top attackers.
Adlumin, a Washington DC startup working on technology to boost security for mid-market firms, has banked $70 million in new financing. The substantial Series B funding round was led by SYN Ventures, a Florida-based venture capital firm placing early-stage bets in cybersecurity startups. The company said First In Ventures, Washington Harbour Partners, and BankTech Ventures […]
Oct 25, 2023NewsroomExploit / Vulnerability Virtualization services provider VMware has alerted customers to the existence of a proof-of-concept (PoC) exploit for a recently patched security flaw in Aria Operations for Logs. Tracked as CVE-2023-34051 (CVSS score: 8.1), the high-severity vulnerability relates to a case of authentication bypass that could lead to remote code execution. “An […]
The vulnerability (CVE-2023-34051) requires the attacker to compromise a host within the targeted environment and have permissions to add an extra interface or static IP address.
The feature will route third-party traffic through proxies, making users’ IP addresses invisible to specific domains, while adapting to safeguard against cross-site tracking.
Canada on Monday warned of a “Spamouflage” disinformation campaign linked to China that used waves of online posts and deepfake videos manipulated to try to disparage and discredit Canadian lawmakers. The Global Affairs department said in a statement it had “detected a ‘Spamouflage’ campaign connected to the People’s Republic of China.” The bot network, according […]
Blockchain application security startup Blockaid today announced that it has emerged from stealth mode with a $33 million Series A investment. The financing was led by Ribbit Capital and Variant, with additional investment from Cyberstarts, Greylock Partners, and Sequoia Capital. Founded in 2022, with offices in New York and Tel Aviv, the web3 security company […]