discloses

  • Blog
    digitpatrox3 days ago
    20

    Western Sydney University discloses security breaches, data leak

    Western Sydney University (WSU) announced two security incidents that exposed personal information belonging to members of its community. WSU is a prominent Australian institution offering various undergraduate, postgraduate, and research programs across multiple disciplines. It serves a student body of 47,000 and employs over 4,500 permanent and seasonal staff, operating with an annual budget of approximately $600 million. One of…

    Read More »
  • Blog
    digitpatrox1 week ago
    29

    Food giant WK Kellogg discloses data breach linked to Clop ransomware

    US food giant WK Kellogg Co is warning employees and vendors that company data was stolen during the 2024 Cleo data theft attacks. Cleo software is a managed file transfer utility that was targeted by the Clop ransomware gang en masse at the end of last year. This attack leveraged two zero-day flaws tracked as CVE-2024-50623 and CVE-2024-55956, allowing the threat actors…

    Read More »
  • Blog
    digitpatrox3 weeks ago
    41

    StreamElements discloses third-party data breach after hacker leaks data

    Cloud-based streaming company StreamElements confirms it suffered a data breach at a third-party service provider after a threat actor leaked samples of stolen data on a hacking forum. The platform has reassured users that the attack didn’t impact its servers, though older data at a third-party provider they stopped working with last year was still exposed. “We recently became aware…

    Read More »
  • Blog
    digitpatroxMarch 12, 2025
    52

    Facebook discloses FreeType 2 flaw exploited in attacks

    Facebook is warning that a FreeType vulnerability in all versions up to 2.13 can lead to arbitrary code execution, with reports that the flaw has been exploited in attacks. FreeType is a popular open-source font rendering library used to display text and programmatically add text to images. It provides functionality to load, rasterize, and render fonts in various formats, such…

    Read More »
  • Blog
    digitpatroxFebruary 12, 2025
    77

    Fortinet discloses second firewall auth bypass patched in January

    Update 2/11/25 07:32 PM ET: After publishing our story, Fortinet has informed us that the new CVE-2025-24472 flaw added to FG-IR-24-535 today is not a zero-day and was already fixed in January. Furthermore, even though today’s updated advisory indicates that both flaws were exploited in attacks and even includes a workaround for the new CSF proxy requests exploitation pathway, Fortinet says that only CVE-2024-55591 was…

    Read More »
  • Blog
    digitpatroxDecember 21, 2024
    118

    Sophos discloses critical Firewall remote code execution flaw

    Sophos has addressed three vulnerabilities in its Sophos Firewall product that could allow remote unauthenticated threat actors to perform SQL injection, remote code execution, and gain privileged SSH access to devices. The vulnerabilities affect Sophos Firewall version 21.0 GA (21.0.0) and older, with the company already releasing hotfixes that are installed by default and permanent fixes through new firmware updates. The…

    Read More »
  • Blog
    digitpatroxNovember 19, 2024
    136

    US space tech giant Maxar discloses employee data breach

    Hackers breached U.S. satellite maker Maxar Space Systems and accessed personal data belonging to its employees, the company informs in a notification to impacted individuals. The threat actor compromised the company network about a week before the discovery of the intrusion. Immediately after discovering the unauthorized access, the company took action to prevent the hackers from reaching further into the…

    Read More »
  • Blog
    digitpatroxOctober 24, 2024
    160

    Henry Schein discloses data breach a year after ransomware attack

    Henry Schein has finally disclosed a data breach following at least two back-to-back cyberattacks in 2023 by the BlackCat Ransomware gang, revealing that over 160,000 people had their personal information stolen. Henry Schein is a healthcare solutions provider and a Fortune 500 company with operations and affiliates in 32 countries and revenue of over $12 billion in 2022. On October…

    Read More »
  • Blog
    digitpatroxOctober 8, 2024
    175

    ADT discloses second breach in 2 months, hacked via stolen credentials

    Home and small business security company ADT disclosed it suffered a breach after threat actors gained access to its systems using stolen credentials and exfiltrated employee account data. ADT is a public American company that specializes in security and smart home solutions for residential and small business customers. The firm employs over 14,000 people and has an annual revenue of $4.98…

    Read More »
  • Blog
    digitpatroxSeptember 9, 2024
    169

    Progress Software discloses maximum severity LoadMaster flaw – here’s what you need to know

    Progress Software has issued a public notice declaring it has fixed a maximum severity security vulnerability affecting its LoadMaster and LoadMaster Multi-Tenant hypervisor software. LoadMaster is Progress’ load balancer and application delivery controller (ADC), underpinning high availability, secure, and scalable business applications and websites. The Multi-Tenant hypervisor, meanwhile, is an iteration of the LoadMaster software that allows users to run…

    Read More »
Load More
Back to top button
close