Archive
Microsoft is warning of human-operated ransomware, this kind of attack against businesses is becoming popular in the cybercrime ecosystem. Human-operated ransomware is a technique usually employed in nation-state attacks that is becoming very popular in the cybercrime ecosystem. In human-operated
Ryuk Ransomware Takes Out Durham, North Carolina
The North Carolina city of Durham has become the latest US municipality struck by ransomware after reports suggested the Ryuk variant forced key services offline. In an update on Sunday, the local authority claimed that both the City of Durham
Multiple APT Actors Exploiting Microsoft Exchange Email Servers Vulnerability to Take Over the Server
Multiple APT actors attempting to exploit recently patched remote code execution bug in exchange email servers. The vulnerability can be tracked as CVE-2020-0688. It affects all versions of the exchange server. The bug resides in the Exchange Control Panel (ECP)
The University of Kentucky (UK) has fought off a month-long cyber-attack that impacted UK Healthcare and caused a system-wide slowdown. According to UK officials, the disruption was caused by cryptocurrency mining malware installed by threat actors on the UK network
The global pandemic of Coronavirus, and the concerns of people traveling and gathering indoors at large events, has hit the cybersecurity events calendar with events now being canceled. Initially Mobile World Congress was canceled, after being due to take place
Accenture Acquires Context Information Security
One of the UK’s most recognizable and respected information security service providers has been acquired by Accenture. Context Information Security was acquired for an undisclosed sum from former parent company Babcock International Group. The deal is the latest in a
(ISC)2 Membership Grows to Over 150,000
International cybersecurity organization (ISC)2 today announced that its membership has grown to include over 150,000 professionals. (ISC)2 is the world’s largest nonprofit association of certified cybersecurity professionals, drawing members from 175 different countries. The organization was founded in the United
Critical RCE Vulnerability in Cisco Protection let Hackers Execute an Arbitrary code Remotely
Multiple critical security vulnerabilities in Cisco allow attackers to execute arbitrary commands with user consent. The vulnerability affects Cisco FXOS Software, Cisco NX-OS Software, and Cisco UCS Manager Software. Cisco FXOS and UCS Manager – CLI A vulnerability in CLI
WatchGuard Technologies has announced its intention to acquire endpoint security vendor Panda Security. In a combination of network and endpoint technologies, WatchGuard said that the combined entity will provide centralized management of advanced threat detection and response functionality fueled by
Gender is still the biggest challenge facing many women seeking to progress in their cybersecurity careers, according to Sans Institute. The new findings released by SANS ahead of International Women’s Day on Sunday came from the first ever Women in
Multiple likely state-backed APT groups have been detected exploiting a recently patched Microsoft flaw to target Exchange servers. The vulnerability in question, CVE-2020-0688, was discovered by an anonymous security researcher and reported to Microsoft via Trend Micro’s Zero Day Initiative
Sodinokibi Ransomware operators are threatening to leak a company’s “dirty” financial secrets because they did not pay the ransom. The operators behind the infamous Sodinokibi Ransomware are threatening to publicly release the “dirty” financial secrets of a company that refused
Netgear is warning users of a critical remote code execution flaw that could allow an unauthenticated attacker to take control of its wireless routers. Netgear has addressed a critical remote code execution vulnerability that could be exploited by an unauthenticated
Experts uncovered a new Coronavirus (COVID-19)-themed campaign that is distributing a malware downloader that delivers the FormBook information-stealing Trojan. Experts at MalwareHunterTeam uncovered a new malspam campaign exploiting the fear in the Coronavirus (COVID-19) to deliver malware. The campaign uses
New Emotet Malware Campaign Spread The Infection Across The Network Clients Via WiFi Spreader
Researchers uncovered another new wave of WiFi Spreader campaign from the Emoter malware family that was observed being delivered to multiple bots. Last month we have reported a previous Emoter campaign that taking advantage of wlanAPI interface to enumerate all
US-based telecom giant T-Mobile has undergone yet another data breach this time, revealing personal account data of both its employees and customers. We have previously reported a T-mobile data breach in last year and this current breach notification posted on