Moxa has identified two critical security vulnerabilities in its cellular routers, secure routers and network security appliances that could pose significant risks if left unaddressed. The first vulnerability, CVE-2024-9138, involves hard-coded credentials that could allow authenticated users to escalate their privileges…
Jan 07, 2025Ravie LakshmananFirmware Security / Malware Cybersecurity researchers have uncovered firmware security vulnerabilities in the Illumina iSeq 100 DNA sequencing instrument that, if successfully exploited, could permit attackers to brick or plant persistent malware on susceptible devices. “The Illumina…
A major US government data breach linked to Chinese threat actors was confined to the Treasury, a leading security agency has claimed. The US Cybersecurity and Infrastructure Security Agency (CISA) shared the news in a brief bulletin on Monday. “CISA…
It’s time once again to pay our respects to the once-famous cybersecurity solutions whose usefulness died in the past year. The cybercriminal world collectively mourns the loss of these solutions and the easy access they provide to victim organizations. These…
The rate at which enterprise users clicked on phishing lures nearly trebled in 2024, according to new research by Netskope. More than eight out of every 1000 users clicked on a phishing link each month in 2024, up by 190%…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday said there are no indications that the cyber attack targeting the Treasury Department impacted other federal agencies. The agency said it’s working closely with the Treasury Department and BeyondTrust to…
The British government has announced plans to criminalize the creation of sexually explicit deepfakes, with perpetrators facing up to two years behind bars if found guilty. It is already an offense to share or threaten to share intimate images, including…
Jan 07, 2025Ravie LakshmananCyber Attack / Hacking Internet service providers (ISPs) and governmental entities in the Middle East have been targeted using an updated variant of the EAGERBEE malware framework. The new variant of EAGERBEE (aka Thumtais) comes fitted with…
Victims lost close to $500m from wallet drainer attacks in 2024, a 67% annual increase, according to new data from Scam Sniffers. The security vendor’s Crypto Phishing Report 2024 is based on analysis of Ethereum Virtual Machine (EVM)-compatible chains. The…
Jan 06, 2025Ravie LakshmananMalware / Mobile Security An Android information stealing malware named FireScam has been found masquerading as a premium version of the Telegram messaging app to steal data and maintain persistent remote control over compromised devices. “Disguised as…
All Rights Reserved. Kowatek Blog by IWUCHI
Home | About Us | Disclaimer | Privacy Policy | Contact Us
