It’s unclear how many enterprises employ Apache OFBiz as many organizations might use it internally, but based on public data known users include large organizations such as IBM, HP, Accenture, United Airlines, Home Depot, and Upwork. Some third-party commercial applications, such as Atlassian JIRA, also use OFBiz modules. The project is used globally and across…
Read More
The Hunters International ransomware group is targeting IT workers with a new C# remote access trojan (RAT) called SharpRhino to breach corporate networks. The malware helps Hunters International achieve initial infection, elevate their privileges on compromised systems, execute PowerShell commands, and eventually deploy the ransomware payload. Quorum Cyber researchers who discovered the new malware report…
Read More
Microsoft has mitigated an Azure outage that lasted more than two hours and took down multiple services for customers across North and Latin America. The company says the incident started around 18:22 UTC and impacted services that leverage Azure Front Door (AFD), its modern cloud Content Delivery Network (CDN). “This issue is impacting multiple geographies,…
Read More
Election integrity, civic engagement, and information flows are being reshaped by technological advancements. Innovations like electronic voting systems, digital voter registration, and advanced election-monitoring mechanisms enhance election speed, participation, and security. However, disinformation campaigns pose new threats, as seen in recent elections in the U.S., France, and Germany. Digital platforms empower civic engagement, allowing individuals…
Read More
The legal spars between Delta Air Lines and CrowdStrike are heating up, with the cybersecurity firm claiming that Delta’s extended IT outage was caused by poor disaster recovery plans and the airline refusing to accept free onsite help in restoring Windows devices. After CrowdStrike pushed out a faulty update for its Falcon cybersecurity software, over…
Read More
While HGX server platforms with Nvidia’s B100 and B200 are ‘effectively being canceled outside of some initial lower volumes,’ the chip designer is making its upcoming flagship GB200 Superchip a priority while introducing a new GPU to help satisfy demand, a research firm says. Nvidia is reportedly delaying the release of its next-generation Blackwell GPUs…
Read More
A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. Security experts say the Dark Angels have been around since 2021, but the group doesn’t get much press because they work alone and…
Read More
A design flaw in Windows Smart App Control and SmartScreen that enables attackers to launch programs without triggering security warnings has been under exploitation since at least 2018. Smart App Control is a reputation-based security feature that uses Microsoft’s app intelligence services for safety predictions and Windows’ code integrity features to identify and block untrusted (unsigned)…
Read Moren/a–n/a An issue was discovered in the IhisiServiceSmm module in Insyde InsydeH2O with kernel 5.2 before 05.28.42, 5.3 before 05.37.42, 5.4 before 05.45.39, 5.5 before 05.53.39, and 5.6 before 05.60.39 that could allow an attacker to modify UEFI variables. 2024-07-31 not yet calculated CVE-2023-28149cve@mitre.org Apple–macOS This issue was addressed with improved checks. This issue is…
Read More
Consultancy specialist Thoughtworks is being taken private for $1.7 billion, as its new restructuring plan now will “impact” hundreds of employees. Top Amazon Web Services and Google partner Thoughtworks is being taken private by Apax Partners in a deal worth $1.75 billion as the IT consultancy also unveiled a new plan that will impact hundreds…
Read More