WordPress Plugin Flaw Puts Users of 20,000 Sites at Phishing Risk The WordPress WP HTML Mail plugin, installed in over 20,000 sites, is vulnerable to a high-severity flaw that can lead to code injection and the distribution of convincing phishing emails. ‘WP HTML Mail’ is a plugin used for designing Read more…
Indonesia’s Central Bank Confirms Ransomware Attack, Conti Leaks Data Bank Indonesia (BI), the central bank of the Republic of Indonesia, has confirmed today that a ransomware attack hit its networks last month. During the incident, the attackers stole “non-critical data” belonging to Bank Indonesia employees before deploying ransomware payloads on Read more…
Biden Signs Memo to Boost US National Security Systems’ Defenses President Joe Biden signed a national security memorandum (NSM) on Wednesday to increase the security of national security systems part of critical US government networks used in military and intelligence activities when storing or transferring classified info. “Modernizing our cybersecurity Read more…
Cisco Bug Gives Remote Attackers Root Privileges via Debug Mode Cisco has fixed a critical security flaw discovered in the Cisco Redundancy Configuration Manager (RCM) for Cisco StarOS Software during internal security testing. The vulnerability, tracked as CVE-2022-20649, enables unauthenticated attackers to gain remote code execution (RCE) with root-level privileges on devices Read more…
New MoonBounce UEFI Malware Used by APT41 in Targeted Attacks Security analysts have discovered and linked MoonBounce, “the most advanced” UEFI firmware implant found in the wild so far, to the Chinese-speaking APT41 hacker group (also known as Winnti). APT41 is a notorious hacking group that has been active for at least a decade and Read more…
Microsoft Fixes Outlook Search Issues for Windows 10 Users Microsoft has fixed a known issue causing search issues for Outlook users after installing Windows 10 security updates released since November 2021. As the company explained, searches on the Outlook desktop app might fail and recent emails might not appear in search results if they’re stored locally Read more…
Crypto.com Confirms 483 Accounts Hacked, $34 million Withdrawn Crypto.com has confirmed that a multi-million dollar cyber attack led to the compromise of around 400 of its customer accounts. Although, the company’s CEO stresses that customer funds are not at risk. With regards to daily trading volume, Crypto.com is reportedly the world’s third-largest cryptocurrency trading platform Read more…
Red Cross Cyberattack Exposes Data of 515,000 People Seeking Missing Family A cyberattack on a Red Cross contactor has led to the theft of personal data for more than 515,000 people in ‘Restoring Family Links,’ a program that helps reunite families separated by war, disaster, and migration. The announcement comes Read more…
Microsoft: SolarWinds Fixes Serv-U Bug Exploited for Log4j Attacks SolarWinds has patched a new Serv-U vulnerability discovered by Microsoft that threat actors attempted to use to propagate Log4j attacks to internal LDAP servers. Serv-U can be configured to authenticate users against an internal LDAP server, such as a Windows domain controller Read more…
Marketing Giant RRD Confirms Data Theft in Conti Ransomware Attack RR Donnelly has confirmed that threat actors stole data in a December cyberattack, confirmed by BleepingComputer to be a Conti ransomware attack. RR Donnelly (RRD) is a leading integrated services company offering communications, commercial printing, and marketing to enterprise clients. Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
Thailand
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
