Medtronic MiniMed Discloses Data
Medtronic MiniMed has disclosed data to third parties without authorization due to the use of tracking or pixel technology. It has notified 91,325 InPen Diabetes Management users of mobile App…
Evil Extractor Malware Steals Browser Data
Researchers have spotted a stealer malware named as Evil Extractor (originally marketed as an educational tool) is being marketed for sale for other threat actors to steal data and files…
SQL Servers Abused by Trigona Ransomware
Attackers are abusing publicly available Microsoft SQL servers to install Trigona ransomware payloads and encrypt all files. By using account credentials that are simple to guess, brute-force or dictionary attacks…
Posted inSecurity NewsLetter
TheCyberThrone Security Week In Review–April 22nd, 2023
Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings. This review is for the week ending Saturday, April 22nd, 2023. 1. ICICI Bank Data Breach !…
Eval PHP Plugin used to backdoor WordPress Sites
Researchers came with a warning that attackers were seen installing the abandoned Eval PHP plugin on compromised WordPress sites for backdoor deployment. With an Eval PHP plugin, the threat actor…
CISA KEV Update Part V – April 2023
The U.S. CISA added three security flaws to its Known Exploited Vulnerabilities KEV ctalog, based on evidence of active exploitation. The vulnerabilities are as follows - CVE-2023-28432 (CVSS score - 7.5) -…
Capita Data Breach Aftermath
Capita, outsourcing services provider to the UK's government, admitted that hackers stole data from its system during a cyberattack last month. The investigation found hackers infiltrated the network on or…
GhostToken Exposes GCP
Researchers have detailed on a zero-day vulnerability called GhostToken that could let threat actors gain unremovable access to a victim's Google account by converting an authorized third-party app into a…