Security updates have been issued by Zyxel to resolve a critical pre-authentication command injection flaw impacting certain network-attached storage devices, according to The Hacker News.
In the Security News: There is no national cyber director, time to move away from MoveIT, update Microsoft IIS at least every 6 years, your security system is not secure, for that matter neither is your smart pet feeder, identity management is hard, at least for some, spies using spy gadgets to spy on spies, go ahead and just replace your hardware,...
SecurityWeek reports that Western Digital has prevented all devices on firmware affected by the critical vulnerability, tracked as CVE-2022-36327, from accessing its cloud services since June 15, in an effort to curb cyberattacks that may prompt significant data compromise.
Microsoft has disclosed that its Outlook web portal, OneDrive, and Azure Portal had been disrupted between June 7 and 9 as a result of Layer 7 distributed denial-of-service attacks deployed by hacktivist threat operation Anonymous Sudan, also known as Storm-1359, reports BleepingComputer.
BleepingComputer reports that WhatsApp backup files are being exfiltrated by the updated Android GravityRAT spyware distributed in a malware campaign that has been ongoing since last August.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.