Cisco has issued a security advisory regarding a critical remote code execution (RCE) vulnerability, dubbed “regreSSHion,” that affects multiple products. The vulnerability tracked as CVE-2024-6387, was disclosed by the Qualys Threat Research Unit on July 1, 2024. It impacts the OpenSSH server (sshd) in glibc-based Linux systems and has the potential to allow unauthenticated attackers…
A team of researchers from the University of California San Diego has published a paper detailing a novel attack method targeting Intel CPUs. The chip giant says no new mitigations are required to address it. The new attack, named Indirector, is similar to the well-known Spectre v2 or Spectre Branch Target Injection (BTI) attack. These methods typically allow…
The Department of Health and Human Services (HHS) has begun an initiative to better organize and equip its healthcare cyber security programs through a one-stop shop. This latest resource is created through the HHS Administration for Strategic Preparedness and Response (ASPR), which leads the US during disasters and public health emergencies relating to health and…
3 million electric toothbrushes were hacked with malware to conduct distributed denial of service (DDoS) attacks is likely a hypothetical scenario instead of an actual attack, said a publication. The published a story stated that an employee of cyber security firm Fortinet said 3 million electric toothbrushes had been infected with Java malware to conduct DDoS…
Rapid adoption of digital transformation and incorporation of advanced digital payment technologies have propelled the growth of the entire retail industry. But at the same time, this digital growth invites cyber attackers to use this industry as their next big playground and to play with victims. India has witnessed a massive shift in the retail…
Traditional security measures today expose your organization to various cyber threats, which come with lethal attacking policy and techniques. Hence automated BAS solution must be a crucial component of your core security policy and measurements. In the wake of New Year 2024, the first week of January saw a fatal cyber attack by “Meow” ransomware…
Alkem Laboratories confirmed a cybersecurity incident that led to a fraudulent transfer of Rs 52 crore from one of its subsidiaries affecting the brand value and reveling serious vulnerabilities at several level. The disclosure raises concerns about vulnerabilities in India’s pharmaceutical sector to cyberattacks and led to price fall in their share prices. Alkem stated…
Threat of Cyber attack on Indian websites and critical infrastructure is impending as one of the largest hackers group plans cyber attack targeting the health sector. A nationwide alert has been issued and Central agencies are particularly vigilant instructing to adhere to Cyber Hygiene Standard Operating Procedures (SoPs) and perform necessary tasks to safeguard data…
Nissan is investigating a cyber-attack that has targeted its systems in New Zealand and Australia. Customers are being warned of the attack, which may have led to hackers accessing personal information. In a statement on the company’s website, it says they’ve notified cyber security authorities in New Zealand and across the Tasman and their global…
Genetic testing company revealed of data breach affecting 23andMe users that was disclosed earlier this fall. The company says its investigation found hackers were able to access information from 14,000 userbase. Based on its investigation hackers had accessed 0.1% of its customer base. When the breach was first revealed in October, the company said its investigation…
