Eduard Kovacs

The number of Cisco devices hacked via the CVE-2023-20198 zero-day has reached 40,000, including many in the US.

Healthcare solutions giant Henry Schein has disclosed a cybersecurity incident that disrupted operations and possibly led to a data breach.

Hacker claims to have breached D-Link’s network in Taiwan and is offering to sell stolen data, but the company says the claims are exaggerated.

More than a dozen cybersecurity-related M&A deals were announced in the first half of October 2023.

Tens of thousands of Cisco devices have reportedly been hacked via the exploitation of the zero-day vulnerability CVE-2023-20198.

Weintek has patched critical and high-severity vulnerabilities found in its cMT series HMIs by industrial cybersecurity firm TXOne. 

Cisco is warning customers that a new IOS XE zero-day vulnerability tracked as CVE-2023-20198 is being exploited to hack devices. 

A vulnerability affecting Milesight industrial routers, tracked as CVE-2023-43261, may have been exploited in attacks. 

Environmental Protection Agency (EPA) withdraws recent water sector cybersecurity rules due to lawsuits by states and water associations.

Dozens of Squid caching proxy vulnerabilities remain unpatched two years after a researcher reported them to developers.

Apple has released iOS 16.7.1 and iPadOS 16.7.1 to patch CVE-2023-42824, a kernel vulnerability that has been exploited in attacks.

Industrial routers made by Chinese company Yifan are affected by several critical vulnerabilities that can expose organizations to attacks. 

Venture capital firm SYN Ventures announces first closing of $75 million cybersecurity seed fund for US cybersecurity companies.

Spanish airline Air Europa is informing customers that their payment card information has been stolen as a result of a hacker attack.

Organizations respond to HTTP/2 Rapid Reset zero-day vulnerability exploited to launch the largest DDoS attacks seen to date. 

ICS Patch Tuesday: Siemens and Schneider Electric release over a dozen advisories addressing more than 40 vulnerabilities.

A zero-day vulnerability named HTTP/2 Rapid Reset has been exploited to launch some of the largest DDoS attacks in history.

A one-click exploit targeting the Libcue component of the GNOME desktop environment could pose a serious threat to Linux systems.

UK-based cable manufacturing giant Volex has been targeted in a cyberattack that involved unauthorized access to IT systems and data.

Recently patched TagDiv Composer plugin vulnerability exploited to hack thousands of WordPress sites as part of the Balada Injector campaign.