Meet ESPecter: a new UEFI bootkit for cyber spying
The bootkit is able to load unsigned drivers to hijack the ESP. Read more from the Source
Experts Warn of Unprotected Prometheus Endpoints Exposing Sensitive Information
A large-scale unauthenticated scraping of publicly available and non-secured endpoints from older versions of Prometheus event monitoring and alerting solution could be leveraged to inadvertently leak sensitive information, according to…
CISA Issues Warning On Cyber Threats Targeting Water and Wastewater Systems
The U.S. Cybersecurity Infrastructure and Security Agency (CISA) on Thursday warned of continued ransomware attacks aimed at disrupting water and wastewater facilities (WWS), highlighting five incidents that occurred between March…
Bugs allowing malicious NFT uploads uncovered in OpenSea marketplace
Malicious NFTs could have become an attack vector for hackers trying to steal digital wallet funds. Read more from the Source