Author name: Biswajit Pradhan

How Pentesting-as-a-Service can Reduce Overall Security Costs

If your job involves keeping applications or data secure, you know how important penetration testing can be in identifying potential weaknesses and vulnerabilities. But you may not know that classic pen testing could inadvertently expose your organization to unnecessary risk while driving up your costs.  Alternatively, PTaaS (Penetration Testing as a Service) for web applications […]

How Pentesting-as-a-Service can Reduce Overall Security Costs Read More »

PyPI suspends new user registration to block malware campaign

The Python Package Index (PyPI) has temporarily suspended user registration and the creation of new projects to deal with an ongoing malware campaign. PyPI is an index for Python projects that helps developers find and install Python packages.  With thousands of packages available, the repository is an attractive target for threat actors, who often upload typosquatted or

PyPI suspends new user registration to block malware campaign Read More »

Decade-old Linux ‘wall’ bug helps make fake SUDO prompts, steal passwords

A vulnerability in the wall command of the util-linux package that is part of the Linux operating system could allow an unprivileged attacker to steal passwords or change the victim’s clipboard. Tracked as CVE-2024-28085, the security issue has been dubbed WallEscape and has been present in every version of the package for the past 11 years up to

Decade-old Linux ‘wall’ bug helps make fake SUDO prompts, steal passwords Read More »

Retail chain Hot Topic hit by new credential stuffing attacks

American retailer Hot Topic disclosed that two waves of credential stuffing attacks in November exposed affected customers’ personal information and partial payment data. The Hot Topic fast-fashion chain has over 10,000 employees in more than 630 store locations across the U.S. and Canada, the company’s headquarters, and two distribution centers. In credential stuffing attacks, cybercriminals

Retail chain Hot Topic hit by new credential stuffing attacks Read More »

Cisco warns of password-spraying attacks targeting VPN services

Cisco has shared a set of recommendations for customers to mitigate password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices. The company says that the attacks have also been targeting other remote access VPN services and appear to be part of reconnaissance activity. During a password-spraying attack,

Cisco warns of password-spraying attacks targeting VPN services Read More »

Cisco Releases Security Updates for Multiple Products

Cisco released security updates to address vulnerabilities in Cisco IOS, IOS XE, and AP software. A cyber threat actor could exploit some of these vulnerabilities to cause a denial-of-service. CISA encourages users and administrators to review the following advisories and apply the necessary updates: Cisco Event Response: March 2024 Semiannual Cisco IOS and IOS XE

Cisco Releases Security Updates for Multiple Products Read More »

[R1] Stand-alone Security Patch Available for Tenable Security Center versions 5.23.1, 6.1.1, 6.2.0 and 6.2.1: SC-202403.1 – Security Advisory

Try Tenable Web App Scanning Enjoy full access to our latest web application scanning offering designed for modern applications as part of the Tenable One Exposure Management platform. Safely scan your entire online portfolio for vulnerabilities with a high degree of accuracy without heavy manual effort or disruption to critical web applications. Sign up now.

[R1] Stand-alone Security Patch Available for Tenable Security Center versions 5.23.1, 6.1.1, 6.2.0 and 6.2.1: SC-202403.1 – Security Advisory Read More »

Spyware vendors behind 50% of zero-days exploited in 2023

Google’s Threat Analysis Group (TAG) and Google subsidiary Mandiant said they’ve observed a significant increase in the number of zero-day vulnerabilities exploited in attacks in 2023, many of them linked to spyware vendors and their clients. Last year’s count reached 97 zero-days exploited in attacks, representing a surge of over 50 percent compared to the

Spyware vendors behind 50% of zero-days exploited in 2023 Read More »

Ransomware as a Service and the Strange Economics of the Dark Web

Ransomware is changing, fast. The past three months have seen dramatic developments among the ransomware ecosystem to include the takedown of LockBit’s ransomware blog, BlackCat exiting the ecosystem, and the emergence of several smaller ransomware groups. This article aims to provide context for recent news. First we will cover how ransomware groups and affiliates work

Ransomware as a Service and the Strange Economics of the Dark Web Read More »

CISA tags Microsoft SharePoint RCE bug as actively exploited

CISA warns that attackers are now exploiting a Microsoft SharePoint code injection vulnerability that can be chained with a critical privilege escalation flaw for pre-auth remote code execution attacks. Tracked as CVE-2023-24955, this SharePoint Server vulnerability enables authenticated attackers with Site Owner privileges to execute code remotely on vulnerable servers. The second flaw (CVE-2023-29357) allows remote

CISA tags Microsoft SharePoint RCE bug as actively exploited Read More »

Scroll to Top