A recently identified malicious campaign has been abusing Microsoft Teams for the distribution of malware, enterprise email security firm Avanan reports.
Microsoft Teams Abused for Malware Distribution in Recent Attacks
Patch for Actively Exploited Flaw in Adobe Commerce and Magento Bypassed
Adobe has announced new patches for the Commerce and Magento e-commerce platforms after researchers discovered that a fix for an actively exploited zero-day can be bypassed.
NSA Provides Guidance on Cisco Device Passwords
The National Security Agency (NSA) this week published recommendations regarding the use of specific passwords when looking to secure Cisco devices.
VMware NSX Data Center Flaw Can Expose Virtual Systems to Attacks
Details of Recently Patched VMware NSX Vulnerability Disclosed
VMware this week announced the availability of a patch for a high-severity vulnerability affecting the NSX Data Center for vSphere network virtualization product.
Google Introduces ‘Privacy Sandbox’ for Ads on Android
Google this week announced Privacy Sandbox on Android, a new initiative expected to lead to more private advertising solutions for its mobile users.
The new solutions, the Internet giant claims, will limit the sharing of user data and will also prevent the use of cross-app identifiers, advertising IDs included.
Intel Software and Firmware Updates Patch 18 High-Severity Vulnerabilities
Intel has released software and firmware updates to address many vulnerabilities found in the company’s products.
The chipmaker last week released 22 security advisories, including seven that have an overall severity rating of “high.”
Are You Prepared for 2022’s More Destructive Ransomware?
We’re barely into 2022, and already we’re seeing ransomware proliferate. What we saw last year is that while most attacks continue to exploit known vulnerabilities, cybercriminals have also redoubled efforts to target new ones – such as what we saw with Hafnium and new Microsoft Exchange vulnerabilities.
FBI Warns of BEC Scams Abusing Virtual Meeting Platforms
The Federal Bureau of Investigation (FBI) this week issued an alert regarding the increasing use of virtual meeting platforms to conduct business email compromise (BEC) and email account compromise (EAC) scams.
Malicious Emails Can Crash Cisco Email Security Appliances
Cisco this week informed customers that its Email Security Appliance (ESA) product is affected by a high-severity denial of service (DoS) vulnerability that can be exploited using specially crafted emails.
Hackers Had Access to Red Cross Network for 70 Days
One month after disclosing a data breach that affected roughly 515,000 people, the International Committee of the Red Cross (ICRC) announced that the hackers had access to its network for 70 days before the attack was discovered.
