February 1, 2023Rabbi LakshmananEnterprise Security/Authentication Microsoft announced on Tuesday that the fake Microsoft Partner Network (MPN) was used to create a malicious OAuth application as part of a malicious campaign designed to compromise an organization’s cloud environment and steal email.…
February 1, 2023Rabbi LakshmananServer and cloud security Two additional supply chain security flaws were revealed in the AMI MegaRAC Baseboard Management Controller (BMC) software. This comes about two months after three security vulnerabilities in the same product came to light.…
Planet Ice, which operates 14 ice rinks across the UK, has revealed that criminal hackers broke into its systems and stole the personal information of more than 240,000 customers. The first hint that most skating and ice hockey fans have…
DocuSign branding impersonation attacks have been observed bypassing native cloud and inline email security solutions and targeting over 10,000 end users across multiple organizations. The findings are from the following security researchers: armor blockdescribed the new threat in an advisory…
GitHub confirmed Monday that attackers stole three digital certificates used for desktop and Atom applications in a December 2022 cyberattack. write in blog postthe company also said after investigating the incident, it concluded that there was no risk to the…
Security researchers suggest that more than a quarter (28%) of all cyberattacks in the UK have hit the financial services and insurance (FSI) industry in the last 12 months. The data, provided via email from the Imperva cybersecurity team, also…
January 31, 2023Rabbi LakshmananThreat Detection / Malware A shellcode-based packer called trick gate It has been operating under the radar for over six years while enabling threat actors to deploy a wide variety of malware including TrickBot, Emotet, AZORult, Agent…
A major Taiwanese hardware manufacturer is urging customers to patch critical vulnerabilities in devices running QTS or QuTS Hero firmware. Network Attached Storage (NAS) device maker QNAP said in an advisory yesterday that CVE-2022-27596 affects QTS 5.0.1 and QuTS hero…
Do you know where your secret is? If not, I can tell you: you are not alone. Hundreds of CISOs, CSOs, and security leaders from large and small companies know neither. Regardless of your organization’s size, qualifications, tools, people, or…
Russian hacktivists seem to have gotten busy again after several hospital websites in the US and the Netherlands were reportedly brought down by distributed denial of service (DDoS) attacks. According to Atlas News, the University of Michigan Hospital and Stanford…
All Rights Reserved. Kowatek Blog by IWUCHI
Home | About Us | Disclaimer | Privacy Policy | Contact Us
