Log4j RCE activity began on December 1 as botnets start using vulnerability

Image: Kevin Beaumont The usage of the nasty vulnerability in the Java logging library Apache Log4j that allowed unauthenticated remote code execution could have kicked off as early as December…

Software Vulnerabilities Up by 20% in 2021

Software Vulnerabilities Up by 20% in 2021 Software vulnerabilities increased by 20% in 2021 compared with 2020, according to a new report by HackerOne. The bug bounty platform said its hackers had uncovered…

Businesses fear rise of third-party attacks, as ransomware impact grows

The majority of global businesses believe supply chain attacks can become a major threat within the next three years, with 45% experiencing at least one such attack in the last…

Federal government refreshes digital transformation strategy and expands cyber hub trial

The federal government has released an updated digital government strategy as part of its goal to make Australia one of the top three digital governments in the world by 2025. …

Hackers are turning to this simple technique to install their malware on PCs

Nation state-backed hacking groups are exploiting a simple but effective new technique to power phishing campaigns for spreading malware and stealing information that’s of interest to their governments.  Cybersecurity researchers at Proofpoint say…

Mozilla properly fuzzed NSS and still ended up with a simple memory corruption hole

When it comes to fuzzing, Mozilla has plenty of cred, and has been doing so for some time, and yet, its prized Network Security Services (NSS) library was busted by…

The BABADEDA Crypter – an Emerging Crypter targeting the Crypto, NFT, and DeFi communities

INTRODUCTION The cryptocurrency market is now worth more than $2.5 trillion. Unfortunately, this fact is not lost on threat actors. As well as using cryptocurrency themselves to extract ransoms, cybercriminals…

Thousands of Small and Medium-sized Businesses Had Their Online Stores Hacked

The National Cyber Security Centre (NCSC) in the United Kingdom has issued a warning to the owners of over 4,000 online retailers that their sites had been penetrated in Magecart…

Over 4000 UK Retailers Compromised by Magecart Attacks

Over 4000 UK Retailers Compromised by Magecart Attacks UK government security experts have been forced to notify over 4000 domestic online businesses that their websites were infected with digital skimming…

Hackers targeted thousands of online retailers to steal credit card details

Over 4,000 online retailers have been warned that their websites had been hacked by cyber criminals trying to steal payment information and other personal information from customers.  In total, the National…