cognitive cybersecurity intelligence

News and Analysis

Radio silence from DMS vendor quartet over XSS zero-days

Enterprise document management system (DMS) vendors, ONLYOFFICE, OpenKM, LogicalDOC, and Mayan, are yet to resolve several severe DMS vulnerabilities, according to cybersecurity firm Rapid7. It warned that stored cross-site scripting (XSS) flaws in the systems pose high risks. No patches or updates have been released, and vendors have not responded to Rapid7’s disclosures.

Source: portswigger.net –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report

North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to

FBI offers million for information about Salt Typhoon members

FBI offers $10 million for information about Salt Typhoon members

The FBI has declared a $10 million reward for information on Chinese hacking group Salt Typhoon, known for its intrusion into several US telecom firms’

Social Engineering Campaign Abuses Zoom to Install Malware

Security researchers at Trail of Bits have identified a threat actor, ELUSIVE COMET, launching a social engineering campaign abusing Zoom’s remote control feature to take

M&S halts all online orders amid ongoing disruption caused by cyber attack – ITVX

M&S has stopped all online orders due to a cyber attack causing ongoing disruptions. The attack affects their ability to fulfill orders and process payments.

News and Analysis

Radio silence from DMS vendor quartet over XSS zero-days

Subscribe to newsletter

More Posts

North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report

FBI offers $10 million for information about Salt Typhoon members

Social Engineering Campaign Abuses Zoom to Install Malware

M&S halts all online orders amid ongoing disruption caused by cyber attack – ITVX

Products

Solutions

Healthcare cybersecurity

Healthcare Threat Intelligence

Use Cases

News and Analysis

Insights

Company