Featured

US Government Issues Advisory on Ransomware Group Blamed for Halliburton Cyberattack

Featured, Halliburton, oil, Ransomware /

US Government Issues Advisory on Ransomware Group Blamed for Halliburton Cyberattack 2024-08-30 at 14:31 By Eduard Kovacs The RansomHub ransomware group, which has made at least 210 victims, is believed to be behind the attack on oil giant Halliburton.  The post US Government Issues Advisory on Ransomware Group Blamed for Halliburton Cyberattack appeared first on […]

US Government Issues Advisory on Ransomware Group Blamed for Halliburton Cyberattack Read More »

WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies

exploited, Featured, Nation-State, South Korea, WPS Office, Zero-Day /

WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies 2024-08-28 at 18:01 By Eduard Kovacs A WPS Office zero-day vulnerability tracked as CVE⁠-⁠2024⁠-⁠7262 was exploited by South Korean hacker group APT-C-60. The post WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies Read More »

Chinese APT Volt Typhoon Caught Exploiting Versa Networks SD-WAN Zero-Day

Black Lotus Labs, China APT, Cyberwarfare, Featured, KV Botnet, Nation-State, Versa Director, Volt Typhoon /

Chinese APT Volt Typhoon Caught Exploiting Versa Networks SD-WAN Zero-Day 2024-08-26 at 21:17 By Ryan Naraine Malware hunters catch Chinese APT Volt Typhoon exploiting a zero-day in Versa Director servers used by ISPs and MSPs. The post Chinese APT Volt Typhoon Caught Exploiting Versa Networks SD-WAN Zero-Day appeared first on SecurityWeek. This article is an

Chinese APT Volt Typhoon Caught Exploiting Versa Networks SD-WAN Zero-Day Read More »

Iranian Hackers Targeted WhatsApp Accounts of Staffers in Biden, Trump Administrations, Meta Says

Election, Featured, Iran, Nation-State, Trump, WhatsApp /

Iranian Hackers Targeted WhatsApp Accounts of Staffers in Biden, Trump Administrations, Meta Says 2024-08-25 at 19:46 By Associated Press Meta said it discovered a network of Iranian hackers, who posed as tech support agents for companies including AOL, Microsoft, Yahoo and Google. The post Iranian Hackers Targeted WhatsApp Accounts of Staffers in Biden, Trump Administrations,

Iranian Hackers Targeted WhatsApp Accounts of Staffers in Biden, Trump Administrations, Meta Says Read More »

Why LinkedIn Developed Its Own AI-Powered Security Platform

Featured, LinkedIn, Security Architecture, Security Infrastructure, Vulnerabilities /

Why LinkedIn Developed Its Own AI-Powered Security Platform 2024-08-21 at 18:01 By Kevin Townsend An inside look at how LinkedIn developed an internal AI-assisted vulnerability management system to protect its massive infrastructure and user base. The post Why LinkedIn Developed Its Own AI-Powered Security Platform appeared first on SecurityWeek. This article is an excerpt from

Why LinkedIn Developed Its Own AI-Powered Security Platform Read More »

Major Backdoor in Millions of RFID Cards Allows Instant Cloning

backdoor, China, Featured, IoT Security, RFID, Vulnerabilities /

Major Backdoor in Millions of RFID Cards Allows Instant Cloning 2024-08-20 at 21:31 By Ryan Naraine Backdoor in millions of contactless cards made by Shanghai Fudan Microelectronics allows instantaneous cloning of RFID smart cards used to open office doors and hotel rooms around the world. The post Major Backdoor in Millions of RFID Cards Allows

Major Backdoor in Millions of RFID Cards Allows Instant Cloning Read More »

National Public Data Says Breach Impacts 1.3 Million People

data breach, Data Breaches, Featured, National Public Data, NPD /

National Public Data Says Breach Impacts 1.3 Million People 2024-08-19 at 16:46 By Kevin Townsend National Public Data (NPD) has confirmed suffering a data breach, but the company says the incident only affects 1.3 million people in the US. The post National Public Data Says Breach Impacts 1.3 Million People appeared first on SecurityWeek. This

National Public Data Says Breach Impacts 1.3 Million People Read More »

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day

Featured, SolarWinds, Vulnerabilities, Zero-Day /

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day 2024-08-16 at 13:17 By Ionut Arghire The US cybersecurity agency CISA warns that a recent SolarWinds Web Help Desk vulnerability has been exploited in the wild. The post SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day Read More »

Microsoft Warns of Six Windows Zero-Days Being Actively Exploited

exploit, Featured, Microsoft, Patch Tuesday, Vulnerabilities, Windows, Zero-Day /

Microsoft Warns of Six Windows Zero-Days Being Actively Exploited 2024-08-13 at 23:01 By Ryan Naraine Microsoft’s security response team pushed out documentation for almost 90 vulnerabilities across Windows and OS components and marked several flaws in the actively exploited category. The post Microsoft Warns of Six Windows Zero-Days Being Actively Exploited appeared first on SecurityWeek.

Microsoft Warns of Six Windows Zero-Days Being Actively Exploited Read More »

Radar/Dispossessor Ransomware Operation Disrupted by Authorities

cybercrime, dismantled, Featured, Radar, Ransomware, takedown, Tracking & Law Enforcement /

Radar/Dispossessor Ransomware Operation Disrupted by Authorities 2024-08-13 at 12:01 By Ionut Arghire Law enforcement agencies in the US, Germany, and the UK have disrupted the Radar/Dispossessor ransomware infrastructure. The post Radar/Dispossessor Ransomware Operation Disrupted by Authorities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Radar/Dispossessor Ransomware Operation Disrupted by Authorities Read More »

Donald Trump’s Campaign Says Its Emails Were Hacked

Cyberwarfare, Featured, Government, hacked, Iran, Trump /

Donald Trump’s Campaign Says Its Emails Were Hacked 2024-08-11 at 06:16 By Associated Press Trump campaign spokesperson Steven Cheung blamed the hack on “foreign sources hostile to the United States.” The post Donald Trump’s Campaign Says Its Emails Were Hacked appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

Donald Trump’s Campaign Says Its Emails Were Hacked Read More »

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug

CrowdStrike, exploit, Featured, Incident Response, Qihoo 360, Vulnerabilities /

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug 2024-08-08 at 20:46 By Ryan Naraine CrowdStrike dismissed claims that the Falcon EDR sensor bug could be exploited for privilege escalation or remote code execution. The post CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug appeared first on SecurityWeek. This article is an excerpt from

CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug Read More »

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks

Black Hat, BlackLotus, Featured, Malware & Threats, SafeBreach, software downgrade, Vulnerabilities, Windows Update /

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks 2024-08-07 at 18:16 By Ryan Naraine Researcher showcases hack against Microsoft Windows Update architecture, turning fixed vulnerabilities into zero-days. The post Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Researcher Sounds Alarm on Windows Update Flaws Allowing Undetectable Downgrade Attacks Read More »

Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million

CrowdStrike, Delta, Featured, Incident Response, Microsoft /

Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million 2024-08-07 at 05:16 By Associated Press Microsoft is trying to determine “why other airlines were able to fully restore business operations so much faster than Delta.” The post Microsoft Hits Back at Delta After the Airline Said Last

Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million Read More »

CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash

BSOD, CrowdStrike, disaster recovery, Falcon, Featured, Incident Response, Microsoft, Vulnerabilities, Windows /

CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash 2024-08-06 at 21:16 By Ryan Naraine CrowdStrike says the Falcon sensor crash that blue-screened Windows machines was caused by a “confluence” of vulnerabilities and testing gaps. The post CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash appeared first on SecurityWeek. This article is

CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash Read More »

Google Patches Android Zero-Day Exploited in Targeted Attacks

Android, exploited, Featured, Vulnerabilities, vulnerability, Zero-Day /

Google Patches Android Zero-Day Exploited in Targeted Attacks 2024-08-06 at 11:01 By Eduard Kovacs Google has patched CVE-2024-36971, a high-severity kernel zero-day vulnerability in Android that has been exploited in targeted attacks.  The post Google Patches Android Zero-Day Exploited in Targeted Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

Google Patches Android Zero-Day Exploited in Targeted Attacks Read More »

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous

Featured, kernel, Linux, SLUBStick, Vulnerabilities /

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous 2024-08-05 at 16:47 By Eduard Kovacs A new Linux kernel exploitation technique named SLUBStick makes heap vulnerabilities more dangerous.  The post New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous Read More »

Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study

data breach, Data Breaches, Featured, Ransomware, report, Uncategorized /

Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study 2024-07-31 at 20:16 By Kevin Townsend The average cost of a data breach jumped to $4.88 million from $4.45 million in 2023, a 10% spike. The post Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study appeared first on SecurityWeek.

Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study Read More »

Microsoft Says Azure Outage Caused by DDoS Attack Response

Azure, cloud security, DDoS, Featured, Microsoft, outage /

Microsoft Says Azure Outage Caused by DDoS Attack Response 2024-07-31 at 16:06 By Eduard Kovacs Microsoft’s response to a DDoS attack on Azure amplified the impact of the attack instead of mitigating it, causing outages. The post Microsoft Says Azure Outage Caused by DDoS Attack Response appeared first on SecurityWeek. This article is an excerpt

Microsoft Says Azure Outage Caused by DDoS Attack Response Read More »

Company Paid Record-Breaking $75 Million to Ransomware Group: Report

Featured, ransom payment, Ransomware /

Company Paid Record-Breaking $75 Million to Ransomware Group: Report 2024-07-31 at 13:46 By Eduard Kovacs Zscaler is aware of a company that paid a record-breaking $75 million ransom to the Dark Angels ransomware group. The post Company Paid Record-Breaking $75 Million to Ransomware Group: Report appeared first on SecurityWeek. This article is an excerpt from

Company Paid Record-Breaking $75 Million to Ransomware Group: Report Read More »

Scroll to Top