Advance Auto Parts data breach impacts 2.3 million people
    Advance Auto Parts is sending data breach notifications to over 2.3 million people whose personal data was stolen in recent Snowflake data theft attacks. Advance operates 4,777 stores and 320 Worldpac branches, serving 1,152 independently owned Carquest stores in the United States, Canada, Puerto Rico, the U.S. Virgin Islands, Mexico, and various Caribbean islands. On June 5, 2024, a threat actor known as 'Sp1d3r' began selling a massive 3TB database allegedly containing 380...
    By AFFA 2024-07-11 17:05:14 0 39
    Russia forces Apple to remove dozens of VPN apps from App Store
    Apple has removed 25 virtual private network (VPN) apps from the Russian App Store at the request of Roskomnadzor, Russia's telecommunications watchdog. Roskomnadzor confirmed to Interfax that the order targets multiple apps (including NordVPN, Proton VPN, Red Shield VPN, Planet VPN, Hidemy.Name VPN, Le VPN, and PIA VPN) used to gain access to content tagged as illegal in Russia. "We are writing to notify you that your application, per demand from Roskomnadzor will be removed from the...
    By AFFA 2024-07-08 19:08:43 0 92
    Hackers attack HFS servers to drop malware and Monero miners
    Hackers are targeting older versions of the HTTP File Server (HFS) from Rejetto to drop malware and cryptocurrency mining software. Threat researchers at security company AhnLab believe that the threat actors are exploiting CVE-2024-23692, a critical-severity security issue that allows executing arbitrary commands without the need to authenticate. The vulnerability affects versions of the software up to and including 2.3m. In a message on their website, Rejetto...
    By AFFA 2024-07-04 19:25:56 0 115
    Ethereum mailing list breach exposes 35 thousand to crypto draining attack
    A threat actor compromised Ethereum's mailing list provider and sent to over 35,000 addresses a phishing email with a link to a malicious site running a crypto drainer. Ethereum disclosed the incident in a blog post this week and said that it had no material impact on users. Attack details The attack occurred on the night of June 23 when an email was sent from the address ‘updates@blog.ethereum.org' to 35,794 addresses. Ethereum says that the threat actor used a...
    By AFFA 2024-07-04 19:24:14 0 111
    Fake IT support sites push malicious PowerShell scripts as Windows fixes
    Fake IT support sites promote malicious PowerShell "fixes" for common Windows errors, like the 0x80070643 error, to infect devices with information-stealing malware. First discovered by eSentire's Threat Response Unit (TRU), the fake support sites are promoted through YouTube channels that have been compromised and hijacked to add legitimacy to the content creator. In particular, the threat actors are creating fake videos promoting a fix for the 0x80070643 error...
    By AFFA 2024-07-01 18:35:07 0 77
    Dev rejects CVE severity, makes his GitHub repo read-only
    The popular open source project, 'ip' recently had its GitHub repository archived, or made "read-only" by its developer. Fedor Indutny, due to a CVE report filed against his project, started getting hounded by people on the internet bringing the vulnerability to his attention. Unfortunately, Indutny's case isn't isolated. In recent times, open-source developers have been met with an uptick in receiving debatable or, in some cases, outright bogus CVE reports filed...
    By AFFA 2024-07-01 18:32:54 0 74
    Latest Intel CPUs impacted by new Indirector side-channel attack
    Modern Intel processors, including chips from the Raptor Lake and the Alder Lake generations are susceptible to a new type of a high-precision Branch Target Injection (BTI) attack dubbed 'Indirector,' which could be used to steal sensitive information from the CPU. Indirector exploits flaws in Indirect Branch Predictor (IBP) and Branch Target Buffer (BTB), two hardware components found in modern Intel CPUs, to manipulate speculative execution for data extraction. Three researchers at the...
    By AFFA 2024-07-01 18:27:53 0 105
    New ARM 'TIKTAG' attack impacts Google Chrome, Linux systems
    A new speculative execution attack named "TIKTAG" targets ARM's Memory Tagging Extension (MTE) to leak data with over a 95% chance of success, allowing hackers to bypass the security feature. The paper, co-signed by a team of Korean researchers from Samsung, Seoul National University, and the Georgia Institute of Technology, demonstrates the attack against Google Chrome and the Linux kernel. MTE is a feature added in the ARM v8.5-A architecture (and later), designed to detect and...
    By AFFA 2024-06-16 21:12:06 0 115
    Why (and how) threat actors target your Active Directory
    June 5, 2024   10:01 AM   0 Microsoft Active Directory tops the list of targets that attackers go after in the enterprise. It’s generally the core identity and access management solution for accessing resources in many environments, so Active Directory compromise can lead to catastrophic consequences. It can allow attackers to access sensitive information, launch ransomware attacks, escalate privileges, establish persistent threats, and more. Why is...
    By AFFA 2024-06-05 16:47:39 0 102
    Windows 11 Recall AI feature will record everything you do on your PC
    May 20, 2024   02:58 PM   2 Microsoft has announced a new AI-powered feature for Windows 11 called 'Recall,' which records everything you do on your PC and lets you search through your historical activities. Recall works like a photographic memory for your PC, letting you access everything you've seen or done on your computer in an organized way using queries in your native language. With Recall, you can scroll through your timeline to find content from...
    By AFFA 2024-05-20 19:59:56 0 178
    Largest non-bank lender in Australia warns of a data breach
    May 12, 2024   10:16 AM   0 Firstmac Limited is warning customers that it suffered a data breach a day after the new Embargo cyber-extortion group leaked over 500GB of data allegedly stolen from the firm. Firstmac is a significant player in Australia's financial services industry, focusing primarily on mortgage lending, investment management, and securitization services. Headquartered in Brisbane, Queensland, and employing 460 people, the firm has...
    By AFFA 2024-05-12 16:47:41 0 217
    Citrix warns admins to manually mitigate PuTTY SSH client bug
    May 9, 2024   03:27 PM   0 Citrix notified customers this week to manually mitigate a PuTTY SSH client vulnerability that could allow attackers to steal a XenCenter admin's private SSH key. XenCenter helps manage Citrix Hypervisor environments from a Windows desktop, including deploying and monitoring virtual machines. The security flaw (tracked as CVE-2024-31497) impacts multiple versions of XenCenter for Citrix Hypervisor 8.2 CU1 LTSR, which bundle and use...
    By AFFA 2024-05-10 18:22:51 0 182
    Widely used modems in industrial IoT devices open to SMS attack
    May 10, 2024   04:00 AM   0 Security flaws in Telit Cinterion cellular modems, widely used in sectors including industrial, healthcare, and telecommunications, could allow remote attackers to execute arbitrary code via SMS. A set of eight separate issues, seven of them with identifiers CVE-2023-47610 through CVE-2023-47616 and another that has yet to be registered, were disclosed last November by security researchers at Kaspersky's ICS CERT division....
    By AFFA 2024-05-10 18:21:00 0 196
    Over 50 Thousand Tinyproxy servers vulnerable to critical RCE flaw
    May 7, 2024   01:07 PM   0 Nearly 52,000 internet-exposed Tinyproxy instances are vulnerable to CVE-2023-49606, a recently disclosed critical remote code execution (RCE) flaw. Tinyproxy is an open-source HTTP and HTTPS proxy server designed to be fast, small, and lightweight. It is specifically tailored for UNIX-like operating systems and is commonly used by small businesses, public WiFi providers, and home users. At the start of the month, Cisco...
    By AFFA 2024-05-07 18:31:12 0 388
    FCC fines carriers $200 million for illegally sharing user location
    April 29, 2024   03:41 PM   3 ‚ÄčThe Federal Communications Commission (FCC) has fined the largest U.S. wireless carriers almost $200 million for sharing their customers' real-time location data without their consent. FCC's forfeiture orders finalize Notices of Apparent Liability (NAL) issued against AT&T, Sprint, T-Mobile, and Verizon in February 2020. The fines imposed on Monday include $12 million...
    By AFFA 2024-04-30 17:11:57 0 150
More Articles
Read More
Police seize record 50,000 Bitcoin from now-defunct piracy site
  January 31, 2024   02:58 PM   1 The police in Saxony,...
By AFFA 2024-02-01 16:29:41 0 352
Malicious Visual Studio projects on GitHub push Keyzetsu malware
April 10, 2024   07:00 AM   0 Threat actors are abusing GitHub...
By AFFA 2024-04-10 17:07:35 0 142
DinodasRAT malware targets Linux servers in espionage campaign
March 31, 2024   10:35 AM   0 Security researchers have observed...
By AFFA 2024-03-31 15:01:03 0 204
T-Mobile and Verizon workers get texts offering $300 for SIM swaps
April 16, 2024   07:01 PM   0 Criminals are now texting T-Mobile...
By AFFA 2024-04-17 00:54:01 0 140
Microsoft fixes bug behind incorrect BitLocker encryption errors
April 29, 2024   11:04 AM   0 Microsoft has fixed a known issue...
By AFFA 2024-04-29 18:47:32 0 201