News
-
"LockBit Ransomware and Evil Corp Members Arrested and Sanctioned in Joint Global Effort"New international law enforcement actions have resulted in four arrests and the takedown of nine servers linked to the "LockBit" ransomware operation.
-
"Private US Companies Targeted by Stonefly APT"Symantec threat analysts warns that the North Korean Advanced Persistent Threat (APT) group "Stonefly," also known as "APT45," continues to target US companies despite an indictment.
-
"Linux Malware '"Perfctl'" Behind Years-Long Cryptomining Campaign"For at least three years, the Linux malware named "perfctl" has targeted Linux servers and workstations, evading detection with rootkits.
-
"MITRE Adds Mitigations to EMB3D Threat Model"MITRE has announced the full release of the "EMB3D Threat Model," which now maps essential mitigations to security controls outlined in the Industrial Automation and Control Systems standard.
-
"Email Phishing Attacks Surge as Attackers Bypass Security Controls"According to Egress, email phishing attacks increased 28 percent in the second quarter of 2024 compared to the first quarter, with attackers using effective methods to defeat defenses.
-
"Microsoft and US Government Disrupt Russian Star Blizzard Operations"Microsoft and the US government have seized more than 100 websites used by the Russian nation-state threat actor "Star Blizzard." A US court authorized Microsoft's Digital Crimes Unit (DCU) to disrupt 66 unique domains used by Star Blizzard to at
-
"Adobe Commerce Flaw Exploited to Compromise Thousands of Sites"Sansec reports that multiple threat actors compromised over 4,000 online stores through the exploitation of a critical Adobe Commerce vulnerability named "CosmicSting." The vulnerability is an improper restriction of XML external entity reference
-
"Pig Butchering Trading Apps Found on Google Play, App Store"Security researchers at Group-IB have discovered fake trading apps on Google Play and Apple's App Store that lure victims into "pig butchering" scams.
-
"Litespeed Cache Plugin Flaw Allows XSS Attack, Update Now"Security researchers at Patchstack discovered a new vulnerability in the LiteSpeed Cache plugin for WordPress that could allow unauthenticated attackers to inject malicious code into websites.
-
"Share of Women in UK Cyber Roles Now Just 17%"According to security researchers at Socura, cybersecurity is now the fastest-growing IT role in the UK, but the share of women in such positions has fallen dramatically since 2021.
-
"CeranaKeeper Emerges as New Threat to Thai Government Networks"Security researchers at ESET have recently identified a new China-aligned threat group named CeranaKeeper, which is targeting governmental institutions in Thailand.
-
"Crypto-Doubling Scams Surge Following Presidential Debate"Security researchers at Netcraft have warned of a new wave of investment scams attempting to cash in on public awareness of the presidential debate last month.