Screenconnect Critical Bug Now Under Attack As Exploit Code Emerges
Both technical details and proof-of-concept exploits are available for the two vulnerabilities ConnectWise disclosed earlier this week for ScreenConnect, its...
Month: February 2024
New Ssh Snake Malware Steals Ssh Keys To Spread Across The Network
A threat actor is using an open-source network mapping tool named SSH-Snake to look for private keys undetected and move laterally...
Hackers Abuse Google Cloud Run In Massive Banking Trojan Campaign
Security researchers are warning of hackers abusing the Google Cloud Run service to distribute massive volumes of banking trojans like...
Us Offers 15 Million Bounty For Info On Lockbit Ransomware Gang
The U.S. State Department is now also offering rewards of up to $15 million to anyone who can provide information...
Microsoft Expands Free Logging Capabilities After May Breach
Microsoft has expanded free logging capabilities for all Purview Audit standard customers, including U.S. federal agencies, six months after disclosing...
Joomla Fixes Xss Flaws That Could Expose Sites To Rce Attacks
Five vulnerabilities have been discovered in the Joomla content management system that could be leveraged to execute arbitrary code on...
Us Govt Shares Cyberattack Defense Tips For Water Utilities
CISA, the FBI, and the Environmental Protection Agency (EPA) shared a list of defense measures U.S. water utilities should implement...
Russian Hackers Launch Email Campaigns to Demoralize Ukrainians
A Russian threat-actor is targeting Ukrainian citizens with email Psychological Operations (PSYOPs) campaigns aimed at making them believe Russia is...
NCSC Sounds Alarm Over Private Branch Exchange Attacks
The UK’s National Cyber Security Centre (NCSC) has warned smaller organizations that they could be exposed to attacks targeting their...
Attacker Breakout Time Falls to Just One Hour
Security experts recorded a surge in “hands-on-keyboard” threats in 2023, with the average time it took to move laterally from...
Biden Executive Order to Bolster US Maritime Cybersecurity
US President Joe Biden will be issuing an Executive Order (EO) to strengthen US maritime cybersecurity amid increased reliance on...
Over 40% of Firms Struggle With Cybersecurity Talent Shortage
Over 40% of companies globally are struggling to fill critical cybersecurity roles, particularly in information security research and malware analysis,...
Exclusive: eSentire Confirms Rhysida Ransomware Victims
The Rhysida Ransomware Group has escalated its attacks, targeting hospitals, power plants and schools across the UK, Europe and the...
IBM: Identity Compromises Surge as Top Initial Access Method for Cybercriminals
Cybercriminals are ditching hacking into corporate networks and are instead using legitimate credentials to access and compromise them, with a...
Facebook Marketplace – 77,267 breached accounts
HIBP In February 2024, 200k Facebook Marketplace records allegedly obtained from a Meta contractor in October 2023 were posted to...
Sliver C2 Detected – 168[.]100[.]8[.]112:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
CISA: Microsoft Releases Security Updates for Multiple Products
Microsoft Releases Security Updates for Multiple Products Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on February 13, 2024. These...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address vulnerabilities in Adobe software. A cyber...
CISA: CISA and MS-ISAC Release Advisory on Compromised Account Used to Access State Government Organization
CISA and MS-ISAC Release Advisory on Compromised Account Used to Access State Government Organization Today, CISA and the Multi-State Information...
CISA: CISA, EPA, and FBI Release Top Cyber Actions for Securing Water Systems
CISA, EPA, and FBI Release Top Cyber Actions for Securing Water Systems Today, CISA, the Environmental Protection Agency (EPA), and...
CISA: CISA Releases Seventeen Industrial Control Systems Advisories
CISA Releases Seventeen Industrial Control Systems Advisories CISA released seventeen Industrial Control Systems (ICS) advisories on February 15, 2024. These...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on February 20, 2024. These...
