The Russia-aligned Ransomware-as-a-Service (RaaS) group Qilin offers its affiliates sophisticated, user-friendly tools to trap their victims, as well as a significant portion of the proceeds they steal. Qilin, also known as Agenda ransomware, was first…

According to security experts, the new '.zip' top-level domain (TLD) could drive an increase in the spread of malware and undermine legitimate sources. TLDs are the letters that follow the final period in a URL, such as '.com.' At the beginning of May,…

International electronics manufacturer Lacroix has recently intercepted a targeted cyberattack on its activity sites in France (Beaupréau), Germany (Willich), and Tunisia (Zriba).  To assess the damages caused by the attack, the company said it…

Secure Data Recovery shared the results of a data recovery project aimed at determining how many files could be recovered from hard drives purchased online. The company purchased 100 hard drives at random and used reasonable means to attempt data…

New bipartisan legislation introduced in the US Senate seeks to address the cybersecurity skills shortage in rural hospitals, which hackers and ransomware operators increasingly target. The Rural Hospital Cybersecurity Enhancement Act would require the…

Security researchers at Char49 have discovered that a vulnerability in the official website of luxury sports car maker Ferrari could have exposed potentially sensitive information.  The issue was discovered in March.  Ferrari addressed the…

Symantec researchers have reported that the Lancefly Advanced Persistent Threat (APT) group is now using a custom-written backdoor called Merdoor in ongoing attacks against South and Southeast Asian organizations. The attacks are aimed at government,…

Multiple security flaws have been discovered in the cloud management platforms of three industrial cellular router vendors, which could expose Operational Technology (OT) networks to attacks. The industrial cybersecurity company OTORIO presented its…

Geacon, a Go-based implementation of the beacon from the widely exploited penetration testing suite Cobalt Strike, is increasingly being used to target macOS devices. Geacon and Cobalt Strike are both utilities that legitimate organizations use to…

According to Cequence Security, Application Programming Interfaces (APIs) have emerged as a primary attack vector in several high-profile incidents, posing a significant threat to the security posture of organizations. Numerous high-profile organizations…

A threat actor is exploiting the Follina Remote Code Execution (RCE) vulnerability discovered last year to deploy the XWORM Remote Access Trojan (RAT) and data-stealer against hospitality industry targets. Follina, tracked as CVE-2022-30190, is an RCE…

The Department of Transportation (DOT) has recently been hit with a data breach that may have exposed personally identifiable information of federal government employees.  The DOT said it was working to notify affected individuals whose personally…