Leading banks, media outlets, and airlines are currently suffering major IT outages. Flights have been grounded at Sydney Airport, United Airlines has stopped flying, and the London Stock Exchange group’s platform is…
Category: English
Ivanti Endpoint Manager Vulnerability Allows Code Execution
A critical SQL injection vulnerability (CVE-2024-37381) has been discovered in Ivanti Endpoint Manager (EPM) 2024, posing significant security risks. This flaw allows remote code execution, enabling attackers to gain unauthorized access to…
UnitedHealth’s Cyberattack Costs Exceed $2.3 Billion
UnitedHealth has raised its full-year forecast for the costs associated with a massive cyberattack on its subsidiary, Change Healthcare, to between $2.3 billion and $2.45 billion. This is approximately $1 billion higher…
EU and Ukraine Enhance Cybersecurity Ties
With Ukraine embroiled in a brutal war and formally seeking EU membership, the recent EU-Ukraine Cyber Dialogue in Brussels signaled a critical shift – cybersecurity is no longer just a technical concern,…
Microsoft Fixes Multiple Security Flaws
Microsoft has released a series of updates addressing 139 security vulnerabilities in various Windows and Microsoft products. Among these, two zero-day vulnerabilities are actively being exploited. The first, identified as CVE-2024-38080, is…
Hackers Have 10 Billion Stolen Passwords
Data leaks have become a commonplace threat in the digital age, making it nearly impossible to maintain online accounts without some passwords being compromised. Recent research, reported by TechRadar, reveals a text…
Google’s recent Android security update addresses 25 vulnerabilities
Google has rolled out patches for 25 security vulnerabilities in the Android operating system, addressing a critical-severity flaw in the Framework component. The vulnerability, tracked as CVE-2024-31320, affects Android versions 12 and…
Expert Insights on Cybercriminals’ Cracking Methods
Cybercriminals can easily obtain tools to crack passwords through the dark web, as explained by Patrick Jordens, director of Trusted Third Party (TT3P). These tools are not accessible through regular search engines…
Push for Unified Cloud Security in EU Defense Sector
The European defense, security, and aerospace industries are pressing for higher cybersecurity standards in cloud services to support a unified defense market. The current proposal for a European cybersecurity certification scheme (EUCS),…
Cisco Zero-Day Vulnerability Under Active Exploitation
Cisco has patched a critical zero-day vulnerability in its NX-OS software, identified as CVE-2024-20399, which was exploited by the Chinese state-sponsored group Velvet Ant. The vulnerability, a command injection flaw in the…