600k
-
Earlier, motherboard manufacturer Zotac was found to have leaked a significant amount of detailed customer information due to a failure to configure server permissions properly. This oversight allowed search engine crawlers to directly index after-sales request forms, which contained users’ real names, phone numbers, and detailed addresses.
-
Hackread reports that malware attacks were allegedly conducted by major South Korean internet service provider KT, formerly known as Korean Telecom, to more than 600,000 computers belonging to customers leveraging the widely used file-sharing service Webhard.
-
More than 600,000 internet routers across several Midwest states have been taken offline by a widespread cyberattack against an unnamed U.S. telecommunications firm last October that involved the distribution of a malicious firmware update, Reuters reports.
-
A cyber assault targeting internet routers operating in the United States has caused widespread disruption, affecting over 600,000 devices and marking one of the most significant router attacks in American history.
-
reader comments 23
-
Roku has made two-factor authentication (2FA) mandatory for all users following two credential stuffing attacks that compromised approximately 591,000 customer accounts and led to unauthorized purchases in fewer than 400 cases. The Register reports: Credential stuffing and password spraying are both fairly similar types of brute force attacks, but the former uses known pairs of…
-
Pakistan has announced its intention to expel about 600,000 Afghan citizens, an official confirmed through media reports. The deportation drive, which will begin after Eid al-Fitr in April, targets individuals holding Pakistan-issued ID cards for Afghan citizens. The move follows the deportation of nearly half a million unidentified Afghan refugees since last November, amid security…
-
Wordfence, a leading authority in WordPress security warns about a serious vulnerability in the widely used WP Statistics plugin. This vulnerability (CVE-2024-2194) allows attackers to inject malicious code directly into a WordPress website, putting sensitive data and site functionality at risk.
-
Hardware wallet provider Ledger has announced it will fully reimburse users impacted by the vulnerability that compromised its ConnectKit library last week.
-
A supply chain attack on crypto hardware wallet Ledger led to the theft of $600K
-
Ongoing remote code execution attacks leveraging four Juniper J-Web interface vulnerabilities, tracked from CVE-2023-36844 to CVE-2023-36847, in a pre-auth exploit chain have led to their inclusion in the Cybersecurity and Infrastructure Security Agency’s Known Exploited Vulnerabilities catalog, BleepingComputer reports.
-
The WordPress plugin WP Fastest Cache is vulnerable to an SQL injection vulnerability that could allow unauthenticated attackers to read the contents of the site’s database.