cognitive cybersecurity intelligence

News and Analysis

Zero-Day Flaw in Zimbra Email Software Exploited by Four Hacker Groups

Four hacker groups exploited a zero-day flaw in the Zimbra Collaboration email software to steal email data, user credentials, and authentication tokens. Google’s Threat Analysis Group (TAG) discovered these activities, most of which occurred after the initial fix became public on GitHub. TAG warned organizations to promptly fix their mail servers and noted a pattern of hackers exploiting XSS vulnerabilities in mail servers.

Source: thehackernews.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

Found in the wild: The world’s first unkillable UEFI bootkit for Linux

Security firm ESET has found the first known example of a Linux UEFI bootkit, a type of malware that infects the Unified Extensible Firmware Interface.

Researchers discover first UEFI bootkit malware for Linux

Named “Bootkitty”, the first UEFI bootkit targeting Linux systems has been detected by ESET researchers. Operating before the system’s boot process begins enables Bootkitty to

OIG: OCR should expand scope of HIPAA audit program

The HHS Office of Inspector General (OIG) has called for the Office for Civil Rights (OCR) to expand its HIPAA audit program and define audit

Rogue VPN servers used to spread malware via malicious updates

AmberWolf researchers identified two vulnerabilities, dubbed “NachoVPN,” in popular VPN products SonicWall NetExtender and Palo Alto Networks GlobalProtect, which can be exploited by cyber-attackers to

News and Analysis

Zero-Day Flaw in Zimbra Email Software Exploited by Four Hacker Groups

Subscribe to newsletter

More Posts

Found in the wild: The world’s first unkillable UEFI bootkit for Linux

Researchers discover first UEFI bootkit malware for Linux

OIG: OCR should expand scope of HIPAA audit program

Rogue VPN servers used to spread malware via malicious updates

Products

Solutions

Healthcare cybersecurity

Healthcare Threat Intelligence

Use Cases

News and Analysis

Insights

Company