ExtraReplica: Microsoft patches cross-tenant bug in Azure PostgreSQL
Microsoft has patched a security weakness in Azure PostgreSQL which could have been exploited to execute malicious code. On Thursday, researchers from Wiz Research...
Security News
Cybercriminals Using New Malware Loader ‘Bumblebee’ in the Wild
Cybercriminal actors previously observed delivering BazaLoader and IcedID as part of their malware campaigns are said to have transitioned to a new loader called...
Microsoft: Russia has launched hundreds of cyberattacks against Ukraine
Microsoft warns it saw six Russia-aligned, state-sponsored hacking groups launch over 237 cyberattacks against Ukraine starting in the weeks before Russia’s February 24 invasion....
QNAP Advises to Mitigate Remote Hacking Flaws Until Patches are Available
Network-attached storage (NAS) appliance maker QNAP on Wednesday said it’s working on updating its QTS and QuTS operating systems after Netatalk last month released...
Everything you need to know to create a Vulnerability Assessment Report
You’ve been asked for a Vulnerability Assessment Report for your organisation and for some of you reading this article, your first thought is likely...
Android security: We stopped billions of harmful app downloads, says Google
Google says it blocked 1.2 million apps from being published to the Google Play store because the company detected policy violations in its app...
Twitter’s New Owner Elon Musk Wants DMs to be End-to-End Encrypted like Signal
Elon Musk, CEO of SpaceX and Tesla and Twitter’s new owner, on Thursday called on adding support for end-to-end encryption (E2EE) to the platform’s...
New RIG Exploit Kit Campaign Infecting Victims’ PCs with RedLine Stealer
A new campaign leveraging an exploit kit has been observed abusing an Internet Explorer flaw patched by Microsoft last year to deliver the RedLine...
U.S Cybersecurity Agency Lists 2021’s Top 15 Most Exploited Software Vulnerabilities
Log4Shell, ProxyShell, ProxyLogon, ZeroLogon, and flaws in Zoho ManageEngine AD SelfService Plus, Atlassian Confluence, and VMware vSphere Client emerged as some of the top...
Remote execution holes in Log4j, Exchange and Confluence lead Five Eyes 2021 exploited CVE list
Written by Chris Duckett, APAC Editor Chris Duckett APAC Editor Chris started his journalistic adventure in 2006 as the Editor of Builder AU after...