Notícias

Mitel addressed a critical MiVoice MX-ONE flaw that could allow an unauthenticated attacker to conduct an authentication bypass attack. A critical authentication bypass flaw (CVSS score of 9.4) in Mitel MiVoice MX-ONE allows attackers to exploit weak access controls and gain unauthorized access to user or admin accounts. “An authentication bypass vulnerability has been identified […]

A cryptomining botnet active since 2019 has incorporated likely AI-generated Lcryx ransomware into its operations

Google has filed a lawsuit against the Badbox 2.0 botnet operators, after identifying over 10 million infected Android devices. The post Google Sues Operators of 10-Million-Device Badbox 2.0 Botnet appeared first on SecurityWeek.

Google has filed a lawsuit against the anonymous operators of the Android BadBox 2.0 malware botnet, accusing them of running a global ad fraud scheme against the company's advertising platforms. [...]

Are you into cybersecurity, hacking, or red teaming? I'm a PhD student at Purdue researching how personality traits influence decision-making during cyber intrusions. If you're 18+ and have any experience or interest in cyber operations, I'd love your input. It's a quick, anonymous survey and includes a scenario-based challenge. https://purdue.ca1.qualtrics.com/jfe/form/SV_8iBFsvUtzPJMqVg Totally voluntary. No tracking. Just your thoughts. Thank you so much! submitted by /u/Substantial-Rip-5585 [link] [comments]

The NCSC's new Vulnerability Research Institute will help it develop outreach with the external cybersecurity community

UK's National Cyber Security Centre (NCSC) has announced a new Vulnerability Research Initiative (VRI) that aims to strengthen relations with external cybersecurity experts. [...]

A new vulnerability in ServiceNow, dubbed Count(er) Strike, allows low-privileged users to extract sensitive data from tables to which they should not have access. [...]

Tosibox launched TosiANTA (Tosibox Advanced Network Traffic Analytics), a solution that redefines comprehensive OT network control for industrial organizations. Redefining control in an era of escalating threats Industrial organizations today face a cybersecurity crisis that demands a complete redefinition of network control. Recent industry data reveals that 73% of organizations experienced intrusions impacting OT systems in 2024, a 49% increase from 2023. With 83% of OT leaders reporting at least one security breach in the … More → The post TosiANTA delivers anomaly detection for OT environments appeared first on Help Net Security.

Brazil arrests IT worker João Roque for aiding $100M PIX cyber heist, one of Brazil's biggest banking system breaches. Brazilian police arrested João Roque (48), an IT employee at C&M, for allegedly aiding a cyberattack that stole over 540 million reais (~$100 million) via the PIX banking system. The company C&M links smaller banks to […]