ESET researchers have discovered that a Data Loss Prevention (DLP) company in East Asia has been compromised. During the intrusion, the attackers launched at least three malware families, compromising both the company's internal update servers and third-…

Two zero-day vulnerabilities need to be patched immediately, one in Microsoft Outlook's authentication mechanism and another discovered to be a Mark-of-the-Web (MOTW) bypass. Automox researchers advised enterprises to patch these vulnerabilities within…

GoBruteforcer, a new Golang-based malware, has been discovered targeting web servers running phpMyAdmin, MySQL, FTP, and Postgres in an attempt to recruit them into a botnet. During the attack, GoBruteforcer used a Classless Inter-Domain Routing (CIDR)…

The LockBit ransomware group recently claimed to have stolen valuable SpaceX files after breaching the systems of piece part production company Maximum Industries.  The Texas-based Maximum Industries specializes in waterjet, laser cutting, and CNC…

A new security agency began its job of protecting the UK from state-sponsored and terrorist threats recently.  The National Protective Security Authority (NPSA) was created as part of a major new review of government defense spending known as the…

The US Cybersecurity and Infrastructure Security Agency (CISA) has recently launched a pilot program to warn critical infrastructure organizations if their systems contain vulnerabilities that may be exploited in ransomware attacks.  The new…

In response to a cybercrime group’s claim, home security firm Ring announced that it has no evidence that it has fallen victim to a ransomware attack.  Founded in 2013 and acquired by Amazon in 2018, Ring started with a smart doorbell and later…

The Housing Authority of the City of Los Angeles (HACLA) has recently issued a public notice outlining the impact of a ransomware breach first reported at the start of this year.  The public agency, which claims to hold the largest stock of…

Local governments, K-12 schools, and rural hospitals seeking to improve their cybersecurity are collaborating with University of Georgia (UGA) students to gain a more thorough understanding of their organization's preparedness for cyberattacks. Through…

BCI's latest Cyber Resilience Report, sponsored by Daisy, explores the levels of disruption and cyber resilience arrangements across organizations, as well as the reporting and role of senior executives in developing cyber resilience strategies. Although…

Bishop Luffa School, a British secondary school operated by the Church of England, had student information exposed due to a possible ransomware attack by the Medusa group. Local media reports indicate that the organization's systems have been offline…

Water is crucial to life for communities across the US, but water systems are facing increasingly complex threats, including cyberattacks. Therefore, House and Senate lawmakers have introduced a pair of bills aimed at bolstering the cybersecurity of…