The Week in Ransomware – November 3rd 2023 – Hive’s Back
Over the past couple of months, ransomware attacks have been escalating as new operations launch, old ones return, and existing...
Year: 2023
Okta breach: 134 customers exposed in October support system hack
Okta says attackers who breached its customer support system last month gained access to files belonging to 134 customers, five...
Dutch hacker jailed for extortion, selling stolen data on RaidForums
A former Dutch cybersecurity professional was sentenced to four years in prison after being found guilty of hacking and blackmailing...
Google Play adds security audit badges for Android VPN apps
Google Play, Android's official app store, is now tagging VPN apps with an 'independent security reviews' badge if they conducted...
American Airlines pilot union hit by ransomware attack
Allied Pilots Association (APA), a labor union representing 15,000 American Airlines pilots, disclosed a ransomware attack that hit its systems...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: VMware Releases Advisory for VMware Tools Vulnerabilities
VMware Releases Advisory for VMware Tools Vulnerabilities VMware released a security advisory addressing multiple vulnerabilities (CVE-2023-34057, CVE-2023-34058) in VMware Tools....
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on October 31, 2023. These...
CISA: CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities With Additional Releases
CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities With Additional Releases Today, CISA updated its guidance addressing...
CISA: CISA Announces Launch of Logging Made Easy
CISA Announces Launch of Logging Made Easy Today, CISA announces the launch of a new version of Logging Made Easy (LME)(link...
UK Banks Warn Quantum Will Imperil Entire Payment System
The UK finance industry has warned that quantum computing could unravel the security used to protect the country’s entire payment...
AI Safety Summit: OWASP Urges Governments to Agree on AI Security Standards
Top-level discussions on security and ethical risks AI-powered tools pose are no longer enough to mitigate the dangers posed by...
Russian Security Services Arrest Suspected Ukrainian Hackers
Russia’s feared security service the FSB has detained two men suspected of launching cyber-attacks against domestic IT assets in support...
Forrester: GenAI Will Lead to Breaches and Fines in 2024
Rampant generative AI (GenAI) use next year will lead to some major data breaches and fines for application developers using the...
CISA: Atlassian Releases Security Advisory for Confluence Data Center and Server
Atlassian Releases Security Advisory for Confluence Data Center and Server Atlassian released a security advisory to address a vulnerability (CVE-2023-22518)...
CISA: CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities
CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities Today, CISA updated its guidance addressing two vulnerabilities, CVE-2023-20198 and...
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on November 2, 2023. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Cisco Releases Security Advisories for Multiple Products
Cisco Releases Security Advisories for Multiple Products Cisco released security advisories for vulnerabilities affecting multiple Cisco products. A cyber threat...
AI Safety Summit: Biden-Harris Administration Launches US AI Safety Institute
The US Department of Commerce has created a new government body to lead the US government’s efforts on AI safety...
The People Hacker: AI a Game-Changer in Social Engineering Attacks
Cybercriminals are using artificial intelligence (AI) to launch more sophisticated social engineering attacks, and experts are warning that it is...
Spy Module Discovered in WhatsApp Mods
Users seeking additional features in mobile apps have been increasingly turning to third-party developers who offer mods that often come...
Israeli Entities Under Attack By MuddyWater’s Advanced Tactics
A new social engineering campaign conducted by the “MuddyWater” group has been observed targeting two Israeli entities with tactics, techniques and...
Microsoft Takes on Cyber-Threats with New Secure Future Initiative
Microsoft has announced a major new cybersecurity initiative designed to help the company better respond to the increasing speed, scale...
