News
-
"Online Banks Servicing UK's SMBs Found to Have 'Serious' Security Flaws"Some of the top online banks in the UK were discovered to have serious security flaws in their products, putting the businesses they serve and their customer at risk of cyberattacks. According to researchers at Red Maple Technologies, working on behalf…
-
"Google Launches New Security and Privacy Features to Mark Safer Internet Day"Google announced its new security and privacy initiatives on Safer Internet Day. Among these are new methods for easily and securely entering passwords in Chrome, increased privacy protection for the Google app, enhancements to Google Password Manager,…
-
"US Online Grocery Delivery Platform Leaks 11M User Records"An attacker uploaded a database containing the personal information of 11 million Weee! customers. Weee! is a US-based online grocery delivery platform. According to researchers at Cybernews, the leak appeared to contain information that had not…
-
"Patch Released for Actively Exploited GoAnywhere MFT Zero-Day"Fortra, known until recently as HelpSystems, alerted GoAnywhere MFT users on February 1 about a "zero-day remote code injection exploit." The company has since released two other security notifications, each of them providing mitigations and indicators…
-
"Patching & Passwords Lead the Problem Pack for Cyber-Teams"According to a recent study conducted by the cybersecurity firm Horizon3.ai, ineffective credential policies and a lax approach to patching were among the most common points of Information Technology (IT) security failure for organizations in 2022. The…
-
"UK Metal Engineering Firm Vesuvius Hit by Cyberattack"Vesuvius, a UK-based molten metal flow engineering company, recently issued an alert on February 6, 2023, which stated it was "currently managing a cyber incident, which involved unauthorized access to their systems." The ceramics manufacturer is listed…
-
"LockBit Ransomware Gang Claims Royal Mail Cyberattack"The LockBit ransomware gang has claimed responsibility for the cyberattack on Royal Mail, the leading mail delivery service in the UK, which halted the company's international shipping operations due to severe service disruption. This comes after…
-
"Royal Ransomware Adds Support for Encrypting Linux, VMWare ESXi Systems"The Royal Ransomware group has now added support for encrypting Linux devices and targeting VMWare ESXi virtual machines. Other ransomware operators, including AvosLocker, Black Basta, BlackMatter, HelloKitty, Hive, LockBit, Luna, Nevada, RansomEXX, and…
-
"Hackers Exploit Vulnerabilities in Sunlogin to Deploy Sliver C2 Framework"Using Sunlogin software vulnerabilities, threat actors are deploying the Sliver command-and-control (C2) framework for post-exploitation activities. The AhnLab Security Emergency Response Center (ASEC) discovered that security vulnerabilities in Sunlogin…
-
"Released: Decryptor for Cl0p Ransomware’s Linux Variant"The Linux variant of the Cl0p ransomware contains flawed encryption logic, which allowed researchers from SentinelOne to develop and release a free decryptor. Using the asymmetric algorithm RSA and a public key, the Windows variant of Cl0p encrypts the…
-
"'Massive' New ESXiArgs Ransomware Campaign Has Compromised Thousands of Victims"European cybersecurity authorities warn of active network exploitation of a nearly two-year-old VMWare ESXi flaw by ransomware attackers. ESXiArgs is the name given to the campaign because, after encrypting a file, the ransomware creates an extra file…
-
"Novel Banking Trojan 'PixPirate' Targets Brazil"Security researchers at Cleafy have discovered a new Android banking Trojan dubbed "PixPirate" targeting financial institutions in Brazil between the end of 2022 and the beginning of this year. The researchers stated that PixPirate belongs to the…