News
-
"LockBit, ALPHV, and Other Ransomware Gang Leak Sites Hit by DDoS Attacks"The Ransomware-as-a-Service (RaaS) groups LockBit and ALPHV, also known as BlackCat, along with other ransomware gangs, have been the focus of Distributed Denial-of-Service (DDoS) attacks targeting their data leak sites to cause downtime and outages.…
-
"Bumblebee Malware Adds Post-exploitation Tool for Stealthy Infections"A new version of the Bumblebee malware loader has been discovered in the wild, with a new infection chain involving the PowerSploit framework to perform stealthy reflective injection of a DLL payload into memory. Bumblebee was discovered in April, being…
-
"CISA Warns Against Actively Exploited Chrome and D-Link Security Flaws"The US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) has added 12 new security flaws to its Known Exploited Vulnerabilities (KEV) database, including two critical D-Link flaws and two zero-day vulnerabilities in…
-
"High-Risk ConnectWise Automate Vulnerability Fixed, Admins Urged to Patch ASAP"ConnectWise Automate, a popular remote monitoring and management tool, has been patched to address a vulnerability that could allow attackers to compromise confidential data or other processing resources. The vulnerability's severity is considered "…
-
"New Vulnerabilities Reported in Baxter's Internet-Connected Infusion Pumps"Multiple security flaws have been discovered in Baxter's Internet-connected infusion pumps, which are used by healthcare professionals to dispense medication to patients in clinical settings. Infusion pumps are Internet-enabled devices to deliver…
-
"Targets of a Year-Long Cyberattack Include Australian Politicians And Businesses"Researchers at Proofpoint revealed that Australian government agencies and businesses had been the target of a sophisticated year-long espionage campaign. According to a Proofpoint report, the hackers are named Red Ladon or Leviathan and are closely…
-
"NYU Center for Cybersecurity and DTCC Partner to Create Comprehensive Cybersecurity and Resiliency Program"The NYU Tandon School of Engineering, a global leader in engineering research and education, and the Depository Trust and Clearing Corporation (DTCC), the premier post-trade market infrastructure for the global financial services industry, have announced…
-
"What Meta's GDPR Fine Can Teach CISOs About Data Protection"The Irish Data Protection Commission (DPC), Ireland's supervisory authority for upholding the General Data Protection Regulation (GDPR), recently fined Meta $403 million for allowing users aged 13 to 17 to operate business accounts on Instagram. Under…
-
"Traffic Safety Agency Issues Final Guidelines for Vehicle Cybersecurity"The final version of the National Highway Traffic Safety Administration's (NHTSA) cybersecurity practices, which focuses on cryptographic techniques to mitigate hacking risks facing vehicles, will be published in the Federal Register. NHTSA officials…
-
"How Healthcare Cyberattacks Can Impact Patient Safety, Care Delivery"Healthcare cyberattacks have been known to endanger patient safety and negatively impact care delivery, in addition to causing documented financial losses and reputational harm. Proofpoint commissioned Ponemon Institute to survey IT and security…
-
"Orgs Report Mixed Progress on Ransomware Defense"HYCU, a data protection provider, surveyed 400 technology, financial, and security leaders, finding that most organizations are better prepared to thwart a ransomware attack, with 54 percent reporting they are either mostly prepared (32 percent) or as…
-
"GAO: Comprehensive Strategy Needed to Overcome Cyber Threats"The Government Accountability Office (GAO) calls on the federal government to develop and implement a comprehensive strategy to combat cyber threats to the US. In recent years, the FBI has observed Chinese state-sponsored hackers seeking to compromise…