Cybersecurity News - Page 231

The attacks targeted orgs in the transportation and related logistics industries in Ukraine and Poland.

The world in brief: Microsoft patches a Windows zero-day, public PoC for Fortinet auth bypass vulnerability released, and more.

The new guidance comes as a response to a significant increase of cyberattacks targeting supply chains in recent years.

The group's goal appears to be cyber-espionage, it doesn’t seem to engage in any sabotage or ransomware actions.

Android leaks connectivity checks outside VPN tunnel in a way that VPN services can not block or prevent.

While Microsoft did not include fixes for the two recently disclosed MS Exchange zero-days, there was a patch for another zero-day flaw affecting the Windows COM service.

The platform has an intuitive interface and comes at a relatively low cost while providing a variety of features and tools that help to launch phishing attacks.

Fortinet said it is aware of one instance where the vulnerability was exploited.

By using a thermal camera an attacker can take a picture that shows the heat signature left by users’ fingertips on the area where they touched a keyboard, smartphone screen or ATM keypad.

It appears that the attack had no impact the airports’ flight operations.