The Play ransomware attack faced by the Information Technology (IT) services provider Xplain is worse than initially anticipated, as the national railway company of Switzerland (FSS) and the canton of Aargau were also affected. The Bernese IT company…

France's foreign minister recently announced that France had prevented a hybrid digital attack on the ministry's website, likely carried out by Russian state-linked actors, along with attacks on other government websites and French media sites.  …

Two Russian nationals have recently been charged in the US with hacking the now-defunct cryptocurrency exchange Mt. Gox and conspiring to launder the proceeds.  Alexey Bilyuchenko, 43, and Aleksandr Verner, 29, allegedly attempted to launder…

A Romanian hacker who ran the infrastructure for multiple malware strains has been sentenced to three years in federal prison in the US. According to prosecutors, Mihai Ionut Paunescu, age 39, helped operate the "bulletproof hosting" service PowerHost[.]…

Intellihartx, a company providing patient balance resolution services to hospitals, is starting to inform roughly 490,000 individuals that their personal information was compromised in the GoAnywhere zero-day attack earlier this year.  Disclosed in…

The Cybersecurity and Infrastructure Security Agency (CISA) has issued Binding Operational Directive (BOD) 23-02, "Mitigating the Risk from Internet-Exposed Management Interfaces," requiring federal civilian agencies to remove specific networked…

St. Margaret’s Health is shutting down hospitals and other facilities in Peru and Spring Valley, Illinois, and says a 2021 ransomware attack is partly to blame.  The cyberattack occurred in late February 2021 and forced the shutdown of the Spring…

Security researchers have recently discovered a breach at Zacks Investment Research dating back to 2020, which appears to have impacted millions of customers.  So far, the stock research and analysis firm has made no public disclosure about the…

A study involving high-interaction honeypots with a Remote Desktop Protocol (RDP) connection accessible from the public web demonstrates that attackers are relentless and follow a daily schedule that closely resembles office hours. Researchers at…

According to security researchers, an "easily exploitable" vulnerability in the Microsoft Visual Studio installer could be exploited by an attacker to impersonate a legitimate publisher and distribute malicious extensions. Dolev Taler, a researcher at…

According to Trend Micro, security leaders recognize that the cloud and how cloud security teams operate today are becoming increasingly critical to business and Information Technology (IT) operations. Therefore, cloud security and the foundational…

The 0mega ransomware group has effectively executed an extortion attack against the SharePoint Online environment of a company without using a compromised endpoint, as is typically the case with these types of attacks. Instead, the threat group appears…