Day: November 29, 2022
New Flaw in Acer Laptops Could Let Attackers Disable Secure Boot Protection
29 November 2022Acer has released a firmware update to address a security vulnerability that could be potentially weaponized to turn off UEFI Secure Boot on affected machines. Tracked as CVE-2022-4020, the high-severity vulnerability affects five different models that consist of Aspire A315-22, A115-21, and A315-22G, and Extensa EX215-21 and EX215-21G. The PC maker described the vulnerability as […]
Read More
Hackers Using Trending TikTok ‘Invisible Challenge’ to Spread Malware
29 November 2022Threat actors are capitalizing on a popular TikTok challenge to trick users into downloading information-stealing malware, according to new research from Checkmarx. The trend, called Invisible Challenge, involves applying a filter called Invisible Body that just leaves behind a silhouette of the person’s body. But the fact that individuals filming such videos could be undressed […]
Read More
7 Cyber Security Tips for SMBs
29 November 2022When the headlines focus on breaches of large enterprises like the Optus breach, it’s easy for smaller businesses to think they’re not a target for hackers. Surely, they’re not worth the time or effort? Unfortunately, when it comes to cyber security, size doesn’t matter. Assuming you’re not a target leads to lax security practices in […]
Read More
Irish Regulator Fines Facebook $277 Million for Leak of Half a Billion Users’ Data
29 November 2022Ireland’s Data Protection Commission (DPC) has levied fines of €265 million ($277 million) against Meta Platforms for failing to safeguard the personal data of more than half a billion users of its Facebook service, ramping up privacy enforcement against U.S. tech firms. The fines follow an inquiry initiated by the European regulator on April 14, […]
Read More
CISA Warns of Actively Exploited Critical Oracle Fusion Middleware Vulnerability
29 November 2022The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a critical flaw impacting Oracle Fusion Middleware to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2021-35587, carries a CVSS score of 9.8 and impacts Oracle Access Manager (OAM) versions 11.1.2.3.0, 12.2.1.3.0, and 12.2.1.4.0. Successful exploitation of […]
Read More