Articles tagged "Critical"

Found 911 articles

SAP has issued 26 new security notes along with one updated note addressing vulnerabilities in several of its products, including CRM, S/4HANA, and NetWeaver. This update was released on February 2026's security patch day, indicating that these vulnerabilities could pose significant risks to organizations using these systems. Companies that rely on SAP solutions should prioritize applying these patches to protect against potential exploitation. The vulnerabilities could allow attackers to gain unauthorized access or disrupt services, which can have serious consequences for businesses. It's crucial for SAP users to stay informed and act promptly to safeguard their systems.

Read Original

Singapore's law enforcement has successfully dismantled a group of Chinese hackers who were targeting telecommunications networks in the country. This operation, named Cyber Guardian, is noted as Singapore's largest and longest-running initiative against cyber threats. The hackers were reportedly involved in activities that could compromise sensitive telecommunications infrastructure, potentially affecting millions of users. The operation reflects Singapore's commitment to safeguarding its critical digital assets and showcases the growing international cooperation in tackling cybercrime. With the rise of cyber threats globally, actions like these are crucial to maintaining the integrity of national networks and protecting citizens' data.

Read Original

BeyondTrust has issued a patch for a serious remote code execution (RCE) vulnerability that affects its Remote Support (RS) and Privileged Remote Access (PRA) products. This vulnerability allows attackers to exploit the systems remotely by sending specially crafted requests, and alarmingly, it does not require authentication to do so. This means that unauthorized users could potentially gain control over affected systems, posing significant risks to organizations using these products. Users and companies should prioritize applying the latest patches to mitigate potential threats. Keeping systems updated is crucial to maintaining security against such vulnerabilities.

Read Original

A Chinese cyber group known as UNC3886 has targeted Singapore's four major telecom providers using advanced techniques, including rootkits and a zero-day exploit. Fortunately, the attack did not disrupt services or compromise customer data. This incident raises concerns about the security of essential infrastructure, as telecom providers play a critical role in national communication systems. While no direct impact on users was reported, the use of sophisticated methods by attackers emphasizes the need for ongoing vigilance and robust security measures within the telecommunications sector. Companies must remain alert to such threats and ensure their defenses are up to date.

Read Original
Actively Exploited

Recent zero-day attacks have breached the European Commission and government agencies in Finland and the Netherlands, targeting vulnerabilities in Ivanti software. These incidents appear to be linked, raising concerns about the security of sensitive governmental information. Ivanti is known for providing IT management solutions, and the exploitation of these vulnerabilities can lead to unauthorized access to critical data. This situation emphasizes the need for government agencies to enhance their cybersecurity measures and stay updated with software patches to prevent future breaches. The ongoing exploitation underscores a serious risk to national security and personal data protection across Europe.

Read Original
Actively Exploited

A Chinese cyber espionage group known as UNC3886 has been targeting Singapore's telecommunications sector, according to a report from the Cyber Security Agency of Singapore (CSA). Since July 2025, the group has executed a campaign aimed at all four major telecom companies in the country. In response, the CSA and the Infocomm Media Development Authority (IMDA) initiated Operation CYBER GUARDIAN to bolster defenses and protect sensitive information within the telecom industry. This incident raises concerns about the potential for data breaches and the implications for national security, given the critical role that telecommunications play in modern infrastructure. The situation underscores the need for ongoing vigilance and enhanced cybersecurity measures within essential sectors.

Read Original
Actively Exploited

Italy's Foreign Minister Antonio Tajani announced that various government foreign offices, including the one in Washington D.C., have been targeted by cyberattacks believed to originate from Russia. These attacks come at a critical time as Italy prepares to host the Winter Olympics, raising concerns about the security of both governmental and event-related communications. The implications of these attacks extend beyond just the immediate targets, as they could affect diplomatic relations and the overall safety of the Olympic Games. The Italian government is likely to increase its cybersecurity measures in response to this threat, aiming to safeguard sensitive information and maintain operational integrity. This incident serves as a reminder of the ongoing risks posed by state-sponsored cyber activities.

Read Original
Actively Exploited

A Chinese cyber espionage group known as UNC3886 has successfully infiltrated Singapore's four largest telecom providers: Singtel, StarHub, M1, and Simba. This breach occurred at least once last year, raising concerns about the security of sensitive user data and the potential for espionage. The attackers' motives likely include gathering intelligence and accessing confidential information. The incident underscores the vulnerability of critical infrastructure in the telecommunications sector, which is essential for both personal and national communications. This breach could have significant implications for customer privacy and national security, prompting a need for enhanced security measures across the industry.

Read Original

BeyondTrust has issued a warning about a serious vulnerability in its Remote Support (RS) and Privileged Remote Access (PRA) software. This flaw could let unauthorized attackers run arbitrary code on affected systems, posing a significant security risk. Users of these software products are strongly advised to apply the necessary patches to protect their systems from potential exploitation. The vulnerability's nature means that it could be exploited without requiring any form of authentication, making it particularly dangerous. Organizations using BeyondTrust's software should prioritize updating to secure their environments against this threat.

Read Original

BeyondTrust has addressed a serious remote code execution vulnerability, identified as CVE-2026-1731, which affects its Remote Support (RS) and Privileged Remote Access (PRA) solutions. This vulnerability can be exploited without authentication, making it particularly dangerous for self-hosted customers. BeyondTrust is urging users to apply the patch immediately to protect their systems. Unlike a previous zero-day vulnerability exploited by threat actors linked to China, this issue was discovered by a security researcher and disclosed privately. The prompt action by BeyondTrust highlights the necessity for timely vulnerability management in remote access tools, which are critical for many organizations.

+1 more
Read Original

The article discusses the challenges of AI security, emphasizing that the vulnerabilities lie beyond just cloud infrastructure. Instead, the real risks come from the complex web of supply chains, agents, and human interactions that support AI systems. This means that organizations need to focus on securing these interconnected elements to prevent potential attacks. As AI becomes more integrated into various sectors, the need for comprehensive security measures that address these broader vulnerabilities is critical. Companies must recognize that traditional security practices may not be sufficient to protect against sophisticated threats targeting these components.

Read Original

The Cybersecurity and Infrastructure Security Agency (CISA) has mandated that all federal agencies must decommission any edge devices that are no longer supported within the next 12 months. This directive aims to mitigate risks associated with these outdated devices, which are more susceptible to exploitation by cyber attackers. End of support devices lack critical security updates, making them a target for those looking to breach federal networks. By enforcing this rule, CISA is taking proactive steps to enhance the security posture of government systems and protect sensitive data from potential threats. Agencies must now prioritize replacing or upgrading these devices to comply with the new directive and safeguard their networks.

Read Original

Romania’s national oil pipeline operator, Conpet, recently experienced a cyberattack that disrupted its business systems and caused its website to go offline temporarily. As a state-controlled company responsible for transporting crude oil and liquid petroleum products, any disruption in its operations can have significant implications for the country's energy supply. The incident highlights the vulnerabilities that critical infrastructure companies face, especially in the current digital landscape where such attacks are increasingly common. While Conpet has not disclosed specific details about the attack or the extent of the damage, the incident raises concerns about the security measures in place to protect essential services from cyber threats.

Read Original
Critical
UK Construction Firm Hit by Prometei Botnet Hiding in Windows Server

Hackread – Cybersecurity News, Data Breaches, AI and More

Actively Exploited

A UK construction firm has fallen victim to an attack by the Russian Prometei botnet, as detailed by cybersecurity firm eSentire. The attack involved the use of TOR for anonymity, and attackers focused on stealing passwords and employing decoy tactics to mislead security measures. This incident raises concerns about the security of critical infrastructure in the construction sector, which may not be as fortified against cyber threats as other industries. The implications are significant, as compromised systems can lead to operational disruptions and financial losses for businesses. Companies in similar sectors should take note and assess their own cybersecurity defenses to prevent similar attacks.

Read Original

Recent reports indicate that nearly 7.1% of skills associated with the open-source AI agent OpenClaw on the ClawHub marketplace may be exposing sensitive information such as API keys, credentials, and credit card details. This vulnerability arises from issues in the SKILL.md instructions, which guide developers on how to create and use these skills. The exposure of such critical data can lead to unauthorized access and financial fraud, impacting both developers and users who rely on these AI capabilities. It's crucial for developers to review their implementations and ensure they are safeguarding sensitive information to prevent potential exploitation. This incident serves as a reminder of the importance of secure coding practices in open-source projects.

Read Original
PreviousPage 39 of 61Next