The Information Highway

The Information Highway

Bill Toulas
Bill Toulas is a technology writer and infosec news reporter with over a decade of experience working on various online publications. An open source advocate and Linux enthusiast, is currently finding pleasure in following hacks, malware campaigns, and data breach incidents, as well as by exploring the intricate ways through which tech is swiftly transforming our lives.
Bill Toulas

CISA: New Whirlpool backdoor used in Barracuda ESG hacks

Barracuda-Whirlpool

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has discovered that the backdoor malware named 'Whirlpool' used in attacks on compromised Barracuda Email Security Gateway (ESG) devices. 

Continue reading
0
Tags:
Infrastructure Security Agency CISA malware Whirlpool attacks
  961 Hits
0 Comments
Bill Toulas

Ford says cars with WiFi vulnerability still safe to drive

ford

Ford is warning of a buffer overflow vulnerability in its SYNC3 infotainment system used in many Ford and Lincoln vehicles, which could allow remote code execution, but says that vehicle driving safety isn't impacted. 

Continue reading
0
Tags:
code execution Lincoln vehicles SYNC 3 infotainment system buffer overflow vulnerability Ford
  1094 Hits
0 Comments
Bill Toulas

Industrial PLCs worldwide impacted by CODESYS V3 RCE flaws

codesys

Millions of PLC (programmable logic controllers) used in industrial environments worldwide are at risk to 15 vulnerabilities in the CODESYS V3 software development kit, allowing remote code execution (RCE) and denial of service (DoS) attacks. 

Continue reading
0
Tags:
500 device manufacturers use code execution CODESYS V 3 software development kit 15 vulnerabilities logic controllers
  1018 Hits
0 Comments
Bill Toulas

New Microsoft Azure AD CTS feature can be abused for lateral movement

microsoft-azure-headpic

Microsoft's new Azure Active Directory Cross-Tenant Synchronization (CTS) feature, introduced in June 2023, has created a new potential attack surface that might allow threat actors to more easily spread laterally to other Azure tenants. Microsoft tenants are client organizations or sub-organizations in Azure Active Directory that are configured wi...

Continue reading
0
  1328 Hits
0 Comments
Bill Toulas

Hackers steal Signal, WhatsApp user data with fake Android chat app

Android_malware

Hackers are using a fake Android app named 'SafeChat' to infect devices with spyware malware that steals call logs, texts, and GPS locations from phones. 

Continue reading
0
Tags:
Android app spyware malware GPS locations Android spyware
  1223 Hits
0 Comments

Top Breaches Of 2023

Customers Affected In T-Mobile Breach
Accounts Affected In MOVEit Breach
Customers Affected In MCNA Insurance Data Breach
Individuals Affected In PharMerica Data Breach
Users Affected In ChatGPT Major Data Breach
*Founder Shield End of Year 2023