QNAP Critical Sudo Vulnerability
QNAP, a manufacturer of network-attached storage (NAS) systems, issued a warning to its users regarding a critical vulnerability that can be exploited through the Sudo program for Linux. The vulnerability,…
AlienFox Malware Toolset -SwissArmy Knife
Researchers have spotted a new cloud service provider credential harvester tool set shared in wild through Telegram. The toolset called as Alien Fox is described as a cloud spammer Swiss…
3CX Application Malvertised
Hackers have compromised 3CX, a popular videoconferencing and business phone management application used by more than 600,000 companies. Research providers issued multiple warnings during this week on this compromise. It…
Microsoft Azure Super FabriXss Bug
Researchers have detailed the discovery of a previously unknown vulnerability in Microsoft Azure called Super FabriXss that allowed hackers to undertake remote code execution. The vulnerability was showcased in BlueHat…
Microsoft Patches BingBang Cloud Vulnerability Exposing O365 Data
Researchers have discovered a misconfiguration in Azure Active Directory that exposed applications to unauthorized access, which could have led to a Bing.com takeover. Microsoft’s AAD, a cloud-based identity and access…
Microsoft Defender Reports Zoom and Google as malicious
Microsoft Defender, that comes with Windows is tagging sites such as Google and Zoom as being malicious, several users reported Defender is meant to stop users from visiting malicious sites,…
Cisco Acquiring Lightspin
Cisco is set to acquire Lightspin Technologies, a startup that helps enterprises find and understand vulnerabilities in their cloud infrastructure. Financial terms are not disclosed. Tel Aviv-based Lightspin sells a…
APT-43 Elite North Korean Group
Researchers from Mandiant has spotted a North Korean APT group that uses crypto theft to fund its main goal of cyber-espionage for the Kim Jong-un regime. To be precise, APT43…