CISA: FBI and CISA Release Advisory on Scattered Spider Group
FBI and CISA Release Advisory on Scattered Spider Group Today, the Federal Bureau of Investigation (FBI) and the Cybersecurity and...
Month: November 2023
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA, FBI, MS-ISAC, and ASD’s ACSC Release Advisory on LockBit Affiliates Exploiting Citrix Bleed
CISA, FBI, MS-ISAC, and ASD’s ACSC Release Advisory on LockBit Affiliates Exploiting Citrix Bleed Today, the Cybersecurity and Infrastructure Security...
CISA: Mozilla Releases Security Updates for Firefox and Thunderbird
Mozilla Releases Security Updates for Firefox and Thunderbird Mozilla has released security updates to address vulnerabilities in Firefox and Thunderbird....
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on November 21, 2023. These...
CISA: Adobe Releases Security Updates for ColdFusion
Adobe Releases Security Updates for ColdFusion On Nov. 14, 2023, Adobe released security updates addressing vulnerabilities affecting unpatched ColdFusion software....
US Seizes $9m From Pig Butchering Scammers
US authorities have announced the seizure of millions of dollars’ worth of cryptocurrency linked to a romance and investment fraud...
British Library: Ransomware Attack Led to Data Breach
The British Library has revealed that HR data was stolen and leaked in a recent ransomware breach.The state-run institution, one...
North Korea Blamed For CyberLink Supply Chain Attacks
North Korean hackers have been blamed for a sophisticated supply chain campaign in which they compromised legitimate multimedia software to...
InfectedSlurs Botnet Resurrects Mirai With Zero-Days
The Akamai Security Incident Response Team (SIRT) has detected increased activity targeting a rarely used TCP port across its global...
North Korean Software Supply Chain Threat is Booming, UK and South Korea Warn
Software supply chain attacks conducted by North Korean hackers have skyrocketed over the past few years, according to UK and...
Rug Pull Schemes: Crypto Investor Losses Near $1M
Check Point’s Threat Intel Blockchain system has revealed a new scam, shedding light on the persistent threat of Rug Pulls –...
University of Manchester CISO Speaks Out on Summer Cyber-Attack
The University of Manchester’s CISO has highlighted how the institution approached remediation and recovery following the damaging cyber-incident it experienced...
US-CERT Vulnerability Summary for the Week of November 13, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infocheckpoint -- endpoint_securityLocal attacker can escalate privileges on affected installations of Check...
ICS-Forensics-Tools – Microsoft ICS Forensics Framework
Microsoft ICS Forensics Tools is an open source forensic framework for analyzing Industrial PLC metadata and project files. it enables...
Konni Group Using Russian-Language Malicious Word Docs in Latest Attacks
A new phishing attack has been observed leveraging a Russian-language Microsoft Word document to deliver malware capable of harvesting sensitive...
Black Basta Ransomware Victim: etude-villa[.]fr
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: agrovi[.]dk
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: arenaproducts[.]com
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Mirai-based Botnet Exploiting Zero-Day Bugs in Routers and NVRs for Massive DDoS Attacks
An active malware campaign is leveraging two zero-day vulnerabilities with remote code execution (RCE) functionality to rope routers and video...
N. Korean Hackers Distribute Trojanized CyberLink Software in Supply Chain Attack
A North Korean state-sponsored threat actor tracked as Diamond Sleet is distributing a trojanized version of a legitimate application developed...
6 Steps to Accelerate Cybersecurity Incident Response
Modern security tools continue to improve in their ability to defend organizations' networks and endpoints against cybercriminals. But the bad...
LockBit 3.0 Ransomware Victim: officinaverdedesign[.]it
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Zimbra Collaboration Suite cross-site scripting | CVE-2023-43103
NAME__________Zimbra Collaboration Suite cross-site scriptingPlatforms Affected:Zimbra Zimbra Collaboration SuiteRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Zimbra Collaboration Suite is vulnerable to cross-site scripting, caused...
