Latest Ivanti Zero Day Exploited By Scores of IPs
A zero-day vulnerability disclosed by Ivanti last week is undergoing mass exploitation in the wild, according to the Shadowserver Foundation.The...
News
Meta’s Oversight Board Urges a Policy Change After a Fake Biden Video
A fake video showing US President Joe Biden inappropriately touching his adult granddaughter’s chest sparked calls for Meta to change...
Malware-as-a-Service Now the Top Threat to Organizations
Malware-as-a-Service (MaaS) infections were the biggest threat to organizations in the second half of 2023, according to a new Darktrace...
Beware: Fake Facebook Job Ads Spreading ‘Ov3r_Stealer’ to Steal Crypto and Credentials
Threat actors are leveraging bogus Facebook job advertisements as a lure to trick prospective targets into installing a new Windows-based...
Experts Detail New Flaws in Azure HDInsight Spark, Kafka, and Hadoop Services
Three new security vulnerabilities have been discovered in Azure HDInsight's Apache Hadoop, Kafka, and Spark services that could be exploited...
How a $10B Enterprise Customer Drastically Increased their SaaS Security Posture with 201% ROI by Using SSPM
SaaS applications are the darlings of the software world. They enable work from anywhere, facilitate collaboration, and offer a cost-effective...
Hackers Exploit Job Boards, Stealing Millions of Resumes and Personal Data
Employment agencies and retail companies chiefly located in the Asia-Pacific (APAC) region have been targeted by a previously undocumented threat...
Recent SSRF Flaw in Ivanti VPN Products Undergoes Mass Exploitation
A recently disclosed server-side request forgery (SSRF) vulnerability impacting Ivanti Connect Secure and Policy Secure products has come under mass...
U.S. Imposes Visa Restrictions on those Involved in Illegal Spyware Surveillance
The U.S. State Department said it's implementing a new policy that imposes visa restrictions on individuals who are linked to...
Hpe Investigates New Breach After Data For Sale On Hacking Forum
Hewlett Packard Enterprise (HPE) is investigating a potential new breach after a threat actor put allegedly stolen data up for...
Newest Ivanti Ssrf Zero Day Now Under Mass Exploitation
An Ivanti Connect Secure and Ivanti Policy Secure server-side request forgery (SSRF) vulnerability tracked as CVE-2024-21893 is currently under mass exploitation by...
Us Announces Visa Ban On Those Linked To Commercial Spyware
Secretary of State Antony J. Blinken announced today a new visa restriction policy that will enable the Department of State...
Microsoft Outlook December Updates Trigger Ics Security Alerts
Microsoft is investigating an issue that triggers Outlook security alerts when trying to open .ICS calendar files after installing December...
UK Court Backlog Blocks Attempts to Fight Fraud Epidemic
The UK’s courts are failing to keep pace with soaring levels of fraud, with the number of high-value cases heard...
US Condemns Iran, Issues Sanctions for Cyber-Attacks on Critical Infrastructure
The US has slammed Iran for “destabilizing and potentially escalatory” cyber-attacks on critical infrastructure.The remarks were made in a statement...
Clorox and Johnson Controls Reveal $76m Cyber-Attack Bill
Two new regulatory filings have revealed the surging costs associated with ransomware and other cyber-related incidents.Cleaning product manufacturer, Clorox, confirmed...
Pennsylvania Courts’ Website Disrupted by DoS Attack
The Pennsylvania Courts system has been hit by a cyber-attack, taking down parts of its website.The Administrative Office of Pennsylvania...
AnyDesk Hit by Cyber-Attack and Customer Data Breach
Popular remote desktop software provider AnyDesk has confirmed that its production systems have been compromised following a cyber-attack.AnyDesk’s systems were...
US-CERT Vulnerability Summary for the Week of January 29, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Belarusian National Linked to BTC-e Faces 25 Years for $4 Billion Crypto Money Laundering
A 42-year-old Belarusian and Cypriot national with alleged connections to the now-defunct cryptocurrency exchange BTC-e is facing charges related to...
Patchwork Using Romance Scam Lures to Infect Android Devices with VajraSpy Malware
The threat actor known as Patchwork likely used romance scam lures to trap victims in Pakistan and India, and infect...
Hands-On Review: SASE-based XDR from Cato Networks
Companies are engaged in a seemingly endless cat-and-mouse game when it comes to cybersecurity and cyber threats. As organizations put...
Combined Security Practices Changing the Game for Risk Management
A significant challenge within cyber security at present is that there are a lot of risk management platforms available in...
Pegasus Spyware Targeted iPhones of Journalists and Activists in Jordan
The iPhones belonging to nearly three dozen journalists, activists, human rights lawyers, and civil society members in Jordan have been...
