MOVEit Transfer customers warned of new flaw as PoC info surfaces

June 15, 2023

Progress warned MOVEit Transfer customers to restrict all HTTP access to their environments after info on a new SQL injection (SQLi) vulnerability was shared online today. […] Read More

BleepingComputer

⟵ More on AI regulation, in the EU and elsewhere. Two US Senators say Section 230 does not apply to AI.

Rhysida ransomware leaks documents stolen from Chilean Army ⟶

Toyota finds more misconfigured servers leaking customer info

Toyota Motor Corporation has discovered two additional misconfigured cloud services that leaked car owners’ personal information for over seven years. […] Read More

New BLUFFS attack lets attackers hijack Bluetooth connections

Researchers at Eurecom have developed six new attacks collectively named ‘BLUFFS’ that can break the secrecy of Bluetooth sessions, allowing for device impersonation and man-in-the-middle (MitM) attacks. […] Read More

BleepingComputer

Crypto Hardware Wallet Ledger’s Supply Chain Breach Results in $600,000 Theft

Crypto hardware wallet maker Ledger published a new version of its "@ledgerhq/connect-kit" npm module after unidentified threat actors pushed malicious code that led to the theft of more than $600,000 in virtual assets.
The compromise was the result of a former employee falling victim to a phishing attack, the company said in a statement.
This allowed the attackers to gain Read More

The Hacker News | #1 Trusted Cybersecurity News Site

Related

Related Posts