Two backdoors detected in Auerswald VoIP ystem

The backdoors were detected during penetration testing by RedTeam Pentesting GmbH. On December 20th,  it was reported that a backdoor was found in the network of a US Federal Agency.…

German audio tech giant Sennheiser exposed 55GB of customers’ data

Sennheiser left personal data of over 28,000 customers exposed on an misconfigured Amazon Web Services (AWS) server. According to a report from vpnMentor, the German audio equipment manufacturer, Sennheiser left…

Meta removes accounts of spyware company Cytrox after Citizen Lab report on gov't hacks

Citizen Lab has released a new report highlighting widespread government use of the “Predator” spyware from North Macedonian developer Cytrox. Researchers found that Predator was used to attack two people…

Firefox: Ad blockers are 2021's most popular browser extensions

Multiple ad blockers topped Firefox’s list of the most popular and innovative add-on browser extensions of 2021.  Firefox determines which add-ons are “most popular” by calculating their average daily users…

Volatile and Adaptable: Tracking the Movements of Modern Ransomware

Trend Micro – Trend Micro – Volatile and Adaptable: Tracking the Movements of Modern Ransomware Ransomware Trend Micro’s tracking of modern ransomware, as well as of older families, shows which…

Second Log4j vulnerability discovered, patch already released

more coverage A second vulnerability involving Apache Log4j was found on Tuesday after cybersecurity experts spent days attempting to patch or mitigate CVE-2021-44228.  The description of the new vulnerability, CVE 2021-45046, says…

Log4j flaw puts hundreds of millions of devices at risk, says US cybersecurity agency

Top US government cybersecurity officials fear advanced hackers will have a field day with the Log4j vulnerability that’s likely present in hundreds of millions of devices.  Security experts are already seeing…

Hackers Use QR Codes to Steal Banking Credentials in Recent Phishing Attempts

Over the last few weeks, a new phishing operation focusing on e-banking users from Germany has been in progress, using QR codes during the credential-stealing operation. As explained by BleepingComputer,…

Just 3% of UK Firms Escaped a Supply Chain Breach in 2021

Just 3% of UK Firms Escaped a Supply Chain Breach in 2021 Some 97% of UK organizations suffered a supply chain breach over the past year, up from 82% in…

Russian Bulletproof Hosting Kingpin Gets Five Years

Russian Bulletproof Hosting Kingpin Gets Five Years A Russian man has been sentenced to five years behind bars for his part in a bulletproof hosting venture that helped support countless…