Eduard Kovacs

New research conducted by IOActive shows the potential of electromagnetic fault injection (EMFI) attacks against drones.

Fortinet has warned customers that the critical CVE-2023-27997 vulnerability that was patched recently could be a zero-day exploited in limited attacks.

Researchers discover new MOVEit vulnerabilities related to the zero-day, just as more organizations hit by the attack are coming forward.

Fortinet has patched CVE-2023-27997, a critical FortiGate SSL VPN vulnerability that can be exploited for unauthenticated remote code execution.

Evidence suggests that the Cl0p ransomware group has known about and conducted tests with the recently patched MOVEit zero-day since mid-2021.

Vulnerabilities found by a researcher in a Honda ecommerce platform used for equipment sales exposed customer and dealer information.

Barracuda Networks is telling customers to immediately replace hacked ESG email security appliances regardless of the patches they installed.

Google has released a Chrome 114 security update that patches CVE-2023-3079, the third zero-day vulnerability patched in the browser in 2023.

Researchers show how ChatGPT/AI hallucinations can be exploited to distribute malicious code packages to unsuspecting software developers.

AntChain has teamed up with Intel for a Massive Data Privacy-Preserving Computing Platform (MAPPIC) for AI machine learning.

Major companies have confirmed being impacted by the recent MOVEit zero-day attack, including BBC, British Airways and Zellis.

Verizon’s 16th annual Data Breach Investigations Report (DBIR) provides data on ransomware costs, the frequency of human error in breaches, and BEC trends.

The recent MOVEit zero-day attack has been linked to a known ransomware group, which reportedly stole data from dozens of organizations.

Thirty-six cybersecurity-related merger and acquisition (M&A) deals were announced in May 2023.

Cybersecurity news that you may have missed this week: the spyware used by various governments, new vulnerabilities, industrial security products, and Linux router attacks.

Apple has denied working with any government to add backdoors to its products after Russia accused the company of helping the NSA hack iPhones.

A zero-day vulnerability in Progress Software’s MOVEit Transfer product has been exploited to hack organizations and steal their data.

Kaspersky said its corporate network has been targeted with a zero-click iOS exploit, just as Russia's FSB said iPhones have been targeted by US...

Cisco is in the process of acquiring email security firm Armorblox for its predictive and generative artificial intelligence (AI) technology.

Critical authentication bypass and high-severity command injection vulnerabilities have been patched in Moxa’s MXsecurity product.