Securityexploits

15k Fortinet Configurations Leaked-Microsoft 365 Accounts Targeted with Phishing Kit

by

2 interesting issues have been uncovered by  cybersecurity researchers. Hackernews article:   “New ‘Sneaky 2FA’ Phishing Kit Targets Microsoft 365 Accounts with 2FA Code Bypass” Phishing campaigns have been observed sending payment receipt-related emails to entice recipients into opening bogus PDF documents containing QR code that, upon scanning, redirects them to Sneaky 2FA pages. The Phishing … Read more

Are We Still Waiting for Criminals to use AI to Attack?

by

I think you know the answer to that: United Nations Office on Drugs and Crime has found multiple areas in the world where there is a confluence of criminal gangs with drug trafficking sales, online gambling, and cyber-enabled attacks. And guess what these criminal gangs into drugs, online gambling, and cyberattacks are using to make … Read more

3 Ongoing cybersecurity Issues “Interesting”

by

 Ivanti Legacy Cloud appliance has a bad vulnerability (remove/ upgrade ASAP) Scammers are posing as Apple care services in github and Google ads (Malware Bytes article)which are fake. Some windows systems were left dangerously unpatched for some time (krebsonsecurity article) Issue1:   Unfortunately the obsolete Ivanti appliances must be replaced ASAP – as this is the … Read more

3 WordPress Plugins Have Bugs & Cause Cyber Incidents?

by

Another Article (SCMagazine) with more bugs that can cause cybersecurity incidents – WordPress Plugins WPMeta SEO, WPStatistics, and LiteSpeed Cache. So as usual – if you have these plugins, check your WordPress installation for updates as soon as you can. Hopefully the plugins have been fixed and then one can update, but if not WordPress … Read more