JumpCloud Resets API Keys

JumpCloud Resets API Keys

Cloud directory-as-a-service provider JumpCloud has been pushed to reset the API keys for customers due to an unspecified “ongoing incident.” A notice has been sent to customers only stating that…
SolarView Critical Authentication Vulnerability

SolarView Critical Authentication Vulnerability

Security researchers have discovered the exploitation of vulnerabilities in the SolarView Series, an industrial control systems (ICS) hardware widely used for monitoring solar power generation and storage. The vulnerability tracked…
Moveit New Critical Vulnerabilities Warning

Moveit New Critical Vulnerabilities Warning

Progress Software has issued an urgent warning to customers about newly uncovered critical SQL injection vulnerabilities in its MOVEit Transfer managed file transfer solution. These vulnerabilities could potentially allow attackers to pilfer…
Lockbit locks Japan’s Nagoya Port

Lockbit locks Japan’s Nagoya Port

The Russian-based threat group LockBit targeted the Port of Nagoya in a ransomware attack. Japan’s largest port is currently unable to load and unload containers from trailers. According to the…
Mozilla Releases Firefox 115

Mozilla Releases Firefox 115

Mozilla has released Firefox 115 to the stable channel with patches for a dozen vulnerabilities, including two high-severity use-after-free bugs. The first hugh severity vulnerability tracked as CVE-2023-37201 is described…
Chinese APT Masterminding SmugX Campaign

Chinese APT Masterminding SmugX Campaign

Researchers have spotted a Chinese APT campaign targeting European government entities focused on foreign and domestic policies that uses HTML smuggling, a technique in which attackers hide malicious payloads inside…