Microsoft Issues Patches for 51 Flaws, Including Critical MSMQ Vulnerability https://firewall.firm.in/wp-content/uploads/2024/06/ms.png Jun 12, 2024NewsroomPatch Tuesday / Vulnerability Microsoft has released security updates to address 51 flaws as part of its Patch Tuesday updates for June 2024. Of the 51 vulnerabilities, one is rated Critical and 50 are rated Important. This is in addition to 17 vulnerabilities resolved in the Chromium-based ...

Chinese Actor SecShow Conducts Massive DNS Probing on Global Scale https://firewall.firm.in/wp-content/uploads/2024/06/lcok.png Cybersecurity researchers have shed more light on a Chinese actor codenamed SecShow that has been observed conducting Domain Name System (DNS) on a global scale since at least June 2023. The adversary, according to Infoblox security researchers Dr. Renée Burton and Dave Mitchell, operates from the China Education and ...

How Cynet Makes MSPs Rich & Their Clients Secure [og_img] Managed service providers (MSPs) are on the front lines of soaring demand for cybersecurity services as cyberattacks increase in volume and sophistication. Cynet has emerged as the security vendor of choice for MSPs to capitalize on existing relationships with SMB clients and profitably expand their client base. By unifying a ...

Top 10 Critical Pentest Findings 2024: What You Need to Know https://firewall.firm.in/wp-content/uploads/2024/06/pentest.png One of the most effective ways for information technology (IT) professionals to uncover a company’s weaknesses before the bad guys do is penetration testing. By simulating real-world cyberattacks, penetration testing, sometimes called pentests, provides invaluable insights into an organization’s security posture, revealing weaknesses that could potentially lead to ...

Sticky Werewolf Expands Cyber Attack Targets in Russia and Belarus https://firewall.firm.in/wp-content/uploads/2024/06/malware.png Jun 10, 2024NewsroomCyber Espionage / Malware Cybersecurity researchers have disclosed details of a threat actor known as Sticky Werewolf that has been linked to cyber attacks targeting entities in Russia and Belarus. The phishing attacks were aimed at a pharmaceutical company, a Russian research institute dealing with microbiology and ...

Researchers Uncover RAT-Dropping npm Package Targeting Gulp Users https://firewall.firm.in/wp-content/uploads/2024/06/npm.png Jun 03, 2024NewsroomSoftware Security / Supply Chain Cybersecurity researchers have uncovered a new suspicious package uploaded to the npm package registry that’s designed to drop a remote access trojan (RAT) on compromised systems. The package in question is glup-debugger-log, which targets users of the gulp toolkit by masquerading as a “logger ...

Mysterious Cyber Attack Took Down 600,000+ Routers in the U.S. https://firewall.firm.in/wp-content/uploads/2024/05/soho.png May 31, 2024NewsroomNetwork Security / Cyber Attack More than 600,000 small office/home office (SOHO) routers are estimated to have been bricked and taken offline following a destructive cyber attack staged by unidentified cyber actors, disrupting users’ access to the internet. The mysterious event, which took place between October 25 ...

Indian National Pleads Guilty to $37 Million Cryptocurrency Theft Scheme https://firewall.firm.in/wp-content/uploads/2024/05/fraud.png An Indian national has pleaded guilty in the U.S. over charges of stealing more than $37 million by setting up a website that impersonated the Coinbase cryptocurrency exchange platform. Chirag Tomar, 30, pleaded guilty to wire fraud conspiracy, which carries a maximum sentence of 20 years in prison and ...

Beware: These Fake Antivirus Sites Spreading Android and Windows Malware https://firewall.firm.in/wp-content/uploads/2024/05/malware.png May 24, 2024NewsroomMalvertising / Endpoint Security Threat actors have been observed making use of fake websites masquerading as legitimate antivirus solutions from Avast, Bitdefender, and Malwarebytes to propagate malware capable of stealing sensitive information from Android and Windows devices. “Hosting malicious software through sites which look legitimate is predatory ...

Experts Find Flaw in Replicate AI Service Exposing Customers’ Models and Data https://firewall.firm.in/wp-content/uploads/2024/05/wiz.png May 25, 2024NewsroomMachine Learning / Data Breach Cybersecurity researchers have discovered a critical security flaw in an artificial intelligence (AI)-as-a-service provider Replicate that could have allowed threat actors to gain access to proprietary AI models and sensitive information. “Exploitation of this vulnerability would have allowed unauthorized access ...