8220 Gang Exploiting Oracle WebLogic Server Vulnerability to Spread Malware
The threat actors associated with the 8220 Gang have been observed exploiting a high-severity flaw in Oracle WebLogic Server to...
Month: December 2023
Double-Extortion Play Ransomware Strikes 300 Organizations Worldwide
The threat actors behind the Play ransomware are estimated to have impacted approximately 300 entities as of October 2023, according...
Former It Manager Pleads Guilty To Attacking High School Network
Conor LaHiff, a former IT manager for a New Jersey public high school, has admitted to committing a cyberattack against...
Xfinity Discloses Data Breach After Recent Citrix Server Hack
Comcast Cable Communications, doing business as Xfinity, disclosed on Monday that attackers who breached one of its Citrix servers in...
Vans And North Face Owner Vf Corp Hit By Ransomware Attack
American global apparel and footwear giant VF Corporation, the owner of brands like Supreme, Vans, Timberland, and The North Face,...
Microsoft Discovers Critical Rce Flaw In Perforce Helix Core Server
Four vulnerabilities, one of which is rated critical, have been discovered in the Perforce Helix Core Server, a source code...
Fbi Play Ransomware Breached 300 Victims Including Critical Orgs
The Federal Bureau of Investigation (FBI) says the Play ransomware gang has breached roughly 300 organizations worldwide between June 2022...
Mortgage Giant Mr Cooper Data Breach Affects 147 Million People
Mr. Cooper is sending data breach notifications warning that a recent cyberattack has exposed the data of 14.7 million customers...
Active Exploitation of Zero-Day Vulnerability in QNAP VioStor Network Video Recorder (NVR)
QNAP has released security updates to address a zero-day vulnerability (CVE-2023-47565) in their NVR products. The vulnerability is reportedly being...
Critical Vulnerability in WordPress Backup Migration Plugin
WordPress has released updates addressing a critical vulnerability (CVE-2023-6553) in their Backup Migration plugin. The vulnerability has a Common Vulnerability...
MongoDB Investigates Customer Account Data Breach
Database provider MongoDB has alerted customers to a data breach in which some account and contact information was compromised.An email...
Technology Manufacturers Urged to Eliminate Passwords
The US Cybersecurity and Infrastructure Security Agency (CISA) has published a two-point plan urging technology manufacturers to get rid of...
ALPHV Second Most Prominent Ransomware Strain Before Reported Downtime
ALPHV was the second-most leveraged ransomware strain in North America and Europe between January 2022 and October 2023, just before...
Qakbot’s Low-Volume Resurgence Targets Hospitality
Cybersecurity researchers spotted new Qakbot activity targeting the hospitality industry last week.According to a Saturday post on X (formerly Twitter)...
MOVEit Vulnerability Hits Delta Dental: 7 Million Records Exposed
Delta Dental of California and affiliates disclosed a data breach following a global security incident linked to the vulnerability in MOVEit...
Insurer’s UK Honeypots Attacked 17 Million Times Per Day
Legacy vulnerabilities and Remote Desktop Protocol (RDP) endpoints are being singled out by attackers, according to new data based on...
Top 7 Trends Shaping SaaS Security in 2024
Over the past few years, SaaS has developed into the backbone of corporate IT. Service businesses, such as medical practices,...
Brute Ratel C4 Detected – 54[.]249[.]68[.]233:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on December 12, 2023. These...
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple has released security updates for Safari, iOS and iPadOS, Sonoma, Ventura, and...
CISA: The Apache Software Foundation Updates Struts 2
The Apache Software Foundation Updates Struts 2 The Apache Software Foundation has released security updates to address a vulnerability (CVE-2023-50164)...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address multiple vulnerabilities in Adobe software. A...
CISA: CISA and Partners Release Advisory on Russian SVR-affiliated Cyber Actors Exploiting CVE-2023-42793
CISA and Partners Release Advisory on Russian SVR-affiliated Cyber Actors Exploiting CVE-2023-42793 Today, CISA—along with the U.S. Federal Bureau of...
CISA: FBI, CISA, and ASD’s ACSC Release Advisory on Play Ransomware
FBI, CISA, and ASD’s ACSC Release Advisory on Play Ransomware Today, the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure...
