Chinese Hackers Silently Weaponized VMware Zero-Day Flaw for 2 Years
An advanced China-nexus cyber espionage group previously linked to the exploitation of security flaws in VMware and Fortinet appliances has...
News
Court Charges Dev With Hacking After Cybersecurity Issue Disclosure
A German court has charged a programmer investigating an IT problem with hacking and fined them €3,000 ($3,265) for what...
Researchers Link 3am Ransomware To Conti Royal Cybercrime Gangs
Security researchers analyzing the activity of the recently emerged 3AM ransomware operation uncovered close connections with infamous groups, such as...
Meta Wont Remove Fake Instagram Profiles That Are Clearly Catfishing
Imposters and romance scammers abusing social media to con people is hardly a novel occurrence. The problem seems to have gotten...
Vans North Face Owner Says Ransomware Breach Affects 35 Million People
VF Corporation, the company behind brands like Vans, Timberland, The North Face, Dickies, and Supreme, said that more than 35...
Payoneer Accounts In Argentina Hacked In 2fa Bypass Attacks
Numerous Payoneer users in Argentina report waking up to find that their 2FA-protected accounts were hacked and funds stolen after...
Ftc Bans One More Data Broker From Selling Your Location Info
The U.S. Federal Trade Commission (FTC) continues to target data brokers, this time in a settlement with InMarket Media, which...
Breachforums Hacking Forum Admin Sentenced To 20 Years Supervised Release
Conor Brian Fitzpatrick was sentenced to 20 years of supervised release today in the Eastern District of Virginia for operating...
Russian Hackers Stole Microsoft Corporate Emails In Month Long Breach
Microsoft warned Friday night that some of its corporate email accounts were breached and data stolen by a Russian state-sponsored...
Vmware Confirms Critical Vcenter Flaw Now Exploited In Attacks
VMware has confirmed that a critical vCenter Server remote code execution vulnerability patched in October is now under active exploitation....
Chinese Hackers Exploit Vmware Bug As Zero Day For Two Years
A Chinese hacking group has been exploiting a critical vCenter Server vulnerability (CVE-2023-34048) as a zero-day since at least late...
Cisa Emergency Directive Mitigate Ivanti Zero Days Immediately
CISA issued this year's first emergency directive ordering Federal Civilian Executive Branch (FCEB) agencies to immediately mitigate two Ivanti Connect...
Microsoft’s Top Execs’ Emails Breached in Sophisticated Russia-Linked APT Attack
Microsoft on Friday revealed that it was the target of a nation-state attack on its corporate systems that resulted in...
Invoice Phishing Alert: TA866 Deploys WasabiSeed & Screenshotter Malware
The threat actor tracked as TA866 has resurfaced after a nine-month hiatus with a new large-volume phishing campaign to deliver...
CISA Issues Emergency Directive to Federal Agencies on Ivanti Zero-Day Exploits
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday issued an emergency directive urging Federal Civilian Executive Branch (FCEB)...
ChromeOS Multiple Vulnerabilities
Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...
Russian Coldriver Hackers Deploy Malware to Target Western Officials
Russian threat group Coldriver has expanded its targeting of Western officials with the use of malware to steal sensitive data,...
Experts Urge Clearer Direction in South Africa’s Cyber Strategy
South Africa, known to be 'the world's most internet-addicted country,' finds itself plagued by the internet's dark underbelly: ransomware.It is...
Experts Warn of macOS Backdoor Hidden in Pirated Versions of Popular Software
Pirated applications targeting Apple macOS users have been observed containing a backdoor capable of granting attackers remote control to infected...
Preventing Data Loss: Backup and Recovery Strategies for Exchange Server Administrators
In the current digital landscape, data has emerged as a crucial asset for organizations, akin to currency. It's the lifeblood...
Active Exploitation of Critical Vulnerability in Ivanti Products
There are reports of active exploitation of a critical authentication bypass vulnerability (CVE-2023-35082) in Ivanti's Endpoint Manager Mobile (EPMM) and...
ChromeOS Multiple Vulnerabilities
Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...
Npm Trojan Bypasses UAC, Installs AnyDesk with “Oscompatible” Package
A malicious package uploaded to the npm registry has been found deploying a sophisticated remote access trojan on compromised Windows...
Haier Hits Home Assistant Plugin Dev With Takedown Notice
Appliances giant Haier issued a takedown notice to a software developer for creating Home Assistant integration plugins for the company's...
