29 Dec, 2024

Exploit released for Cisco SSM bug allowing admin password changes

Cisco warns that exploit code is now available for a maximum severity vulnerability that lets attackers change any user password on unpatched Cisco Smart Software Manager On-Prem (Cisco SSM On-Prem) license servers. As a Cisco Smart Licensing component, Cisco SSM On-Prem helps manage accounts and product licenses on an organization’s environment using a dedicated dashboard […]

2 mins read

CISA warns of hackers abusing Cisco Smart Install feature

​On Thursday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) recommended disabling the legacy Cisco Smart Install (SMI) feature after seeing it abused in recent attacks. CISA has spotted threat actors using this tactic and leveraging other protocols or software to steal sensitive data, such as system configuration files, which prompted an alert advising admins to disable […]

3 mins read

18-year-old security flaw in Firefox and Chrome exploited in attacks

A vulnerability disclosed 18 years ago, dubbed “0.0.0.0 Day”, allows malicious websites to bypass security in Google Chrome, Mozilla Firefox, and Apple Safari and interact with services on a local network. However, it should be noted that this only affects Linux and macOS devices, and does not work on Windows. For impacted devices, threat actors […]

6 mins read

ADT confirms data breach after customer info leaked on hacking forum

American building security giant ADT confirmed it suffered a data breach after threat actors leaked allegedly stolen customer data on a popular hacking forum. ADT is a public American company that specializes in security and smart home solutions for residential and small business customers. The firm employs 14,300 people, has an annual revenue of $4.98 […]

2 mins read

Hacker wipes 13,000 devices after breaching classroom management platform

A hacker has breached Mobile Guardian, a digital classroom management platform used worldwide, and remotely wiped data from at least 13,000 student’s iPads and Chromebooks. Mobile Guardian, a ‘Google for Education’ partner, is a cross-platform (Android, Windows, iOS, ChromeOS, macOS) one-on-one solution for K-12 schools that offers a complete suite of device management, parental monitoring and […]

2 mins read

Black Myth: Wukong Shows Its Stunning Game World in Final Gameplay Trailer

This morning, Chinese developer Game Science shared the final gameplay trailer for the upcoming action RPG Black Myth: Wukong. The video shows the game’s stunning world that players will get to experience in just twelve days from today. Black Myth: Wukong was first unveiled to the world nearly four years ago, in August 2020. Right away, it […]

2 mins read

McLaren hospitals disruption linked to INC ransomware attack

​On Tuesday, IT and phone systems at McLaren Health Care hospitals were disrupted following an attack linked to the INC Ransom ransomware operation. McLaren is a non-profit healthcare system with annual revenues of over $6.5 billion, which operates a network of 13 hospitals across Michigan supported by a team of 640 physicians. It also has […]

3 mins read

Star Wars Jedi: Survivor Coming to PlayStation 4 and Xbox One

Today, Respawn Entertainment has made the announcement that Star Wars Jedi: Survivor will be coming to PlayStation 4 and Xbox One. This title is already available on PlayStation 5 and Xbox Series X|S. For those who may be on the last generation of consoles and have been wanting to try out Star Wars Jedi: Survivor, […]

2 mins read

1 in 5 companies say state-sponsored attacks try to penetrate supply chain

Roughly one-fifth of enterprise IT administrators have found themselves the target of a state-sponsored attack, according to a survey from HP Wolf. The survey found that of 800 respondents in the IT industry, worldwide 19% reported being the target of an attack on networks, PCs, and internet-facing printers in an apparent effort to penetrate the […]

2 mins read

Black Hat USA: Wi-Fi tracking flaw puts the ‘BS’ in BSSID

LAS VEGAS — Geolocation services for a number of popular mobile hardware vendors can be used to perform widescale Wi-Fi network monitoring, according to a presentation Tuesday at the Black Hat conference here. Researcher Erik Rye of the University of Maryland said that a feature known as a Basic Service Set Identifier (BSSID) can be […]

4 mins read