Malicious Telegram bot Telekopye has been leveraged by suspected Russian threat operation Neanderthals to create fraudulent links, web pages, and QR codes, as well as deliver SMS messages and convincing images in its phishing campaigns, The Hacker News reports.
Attacks with a novel exploit could compromise over 3,000 of more than 6,300 internet-exposed Openfire cross-platform real-time collaboration servers, which continue to be vulnerable against a high-severity path traversal vulnerability that has been patched in May, reports SecurityWeek.
Three months after details of the actively exploited zero-day bug were first released, the FBI says Barracuda’s patches are ineffective and the email security gateways should be removed.
Incredibly, the seemingly simple task of managing corporate-owned devices is still a struggle for most organizations in 2023. Maybe best MDM for Mac doesn't work with Windows, or the best MDM for Windows doesn't work with Mac. Maybe neither have Linux support. Perhaps they don't provide enough insight into the endpoint, or control over it. Whatever...
Households could have their local Wi-Fi networks' passwords compromised through the exploitation of four security flaws impacting TP-Link Tapo L530E smart bulbs and the Tapo app, SecurityWeek reports.
Organizations' corporate networks are being infiltrated by the Akira ransomware operation through the use of compromised Cisco VPN credentials, according to BleepingComputer.
What have been the big challenges in cybersecurity this year? While technology and the threat landscape are evolving, lessons from the past still provide solutions for the future.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.