Skip to content
Monday, January 30, 2023

TFun dot org

Information Security newsfeeds from around the world in English and French. Find it all in one place since 2004. You'll find online the last 5 years.

  • Security
  • Malware
  • Vulnerabilities
  • Hacking
  • cybercrime
  • Attack Maps
  • Privacy Policy
  • Live map

Category: Audits

Vendors Actively Bypass Security Patch for Year-Old Magento Vulnerability

18/01/2023RedOne

Vendors and agencies are actively bypassing the security patch that Adobe released in February 2022 to address CVE-2022-24086, a critical mail template vulnerability in Adobe Commerce and Magento stores, ecommerce security firm Sansec warns. read more

Continue Reading

Tesla Returns as Pwn2Own Hacker Takeover Target

12/01/2023RedOne

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to complete vehicle compromise. read more

Continue Reading

Microsoft Patch Tuesday: 97 Windows Vulns, 1 Exploited Zero-Day

10/01/2023RedOne

Microsoft’s security patching machine hummed into overdrive Tuesday with the release of fixes for at least 97 documented software vulnerabilities, including a zero-day that’s already been exploited to escape the browser sandbox. read more

Continue Reading

Netwrix Acquires Remediant for PAM Technology

28/12/2022RedOne

Data security software vendor Netwrix has acquired Remediant, an early-stage startup working on technology in the PAM (privileged access management) category. Financial terms of the acquisition were not disclosed.  read more

Continue Reading

Microsoft Patches Azure Cross-Tenant Data Access Flaw

23/12/2022RedOne

Microsoft has silently fixed an important-severity security flaw in its Azure Container Service (ACS) after an external researcher warned that a buggy feature allowed cross-tenant network bypass attacks. read more

Continue Reading

Patch Tuesday: Microsoft Plugs Windows Hole Exploited in Ransomware Attacks

14/12/2022RedOne

Microsoft on Tuesday pushed a major Windows update to address a security feature bypass already exploited in global ransomware attacks. The operating system update, released as part of Microsoft’s scheduled Patch Tuesday, addresses a flaw that lets malicious attackers use rigged files to evade MOTW (Mart of the Web) defenses.  read more

Continue Reading

Fortinet Ships Emergency Patch for Already-Exploited VPN Flaw

12/12/2022RedOne

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the flaw in the wild. read more

Continue Reading

Apple Adding End-to-End Encryption to iCloud Backup

08/12/2022RedOne

Apple on Wednesday announced plans to beef up data security protections on its flagship devices with the addition of new encryption tools for iCloud backups and a feature to help users verify identities in the Messages app. read more

Continue Reading

Big Tech Vendors Object to US Gov SBOM Mandate

07/12/2022RedOne

The U.S. government’s mandates around the creation and delivery of SBOMs (software bill of materials) to help mitigate supply chain attacks has run into strong objections from big-name technology vendors. read more

Continue Reading

Investors Pour $200M Into Compliance Automation Startup Drata

07/12/2022RedOne

High-flying security compliance and automation startup Drata continues to attract major venture capital investor interest, banking $200 million in Series C funding that values the company north of $2 billion. read more

Continue Reading

Posts navigation

Older posts
Tfun News | Theme: News Headline by CodeVibrant.
  • Security
  • Malware
  • Vulnerabilities
  • Hacking
  • cybercrime
  • Attack Maps
  • Privacy Policy
  • Live map