Update: Black Basta, Bl00dy Ransomware Gangs Join ScreenConnect Attacks

The Black Basta and Bl00dy ransomware gangs are exploiting a critical authentication bypass vulnerability (CVE-2024-1709) in unpatched ScreenConnect servers to gain admin access and deploy ransomware.

Cyware News – Latest Cyber News – ​Read More

White House Issues Executive Order on International Data Protection

A coming White House Executive Order seeks to protect personal information by preventing the mass transfer of Americans’ sensitive data to countries of concern.

The post White House Issues Executive Order on International Data Protection appeared first on SecurityWeek.

SecurityWeek – ​Read More

Dictators Used Sandvine Tech to Censor the Internet. The US Finally Did Something About It

Canada-based Sandvine has long sold its web-monitoring tech to authoritarian regimes. This week, the US sanctioned the company, severely limiting its ability to do business with American firms.

Security Latest – ​Read More

LabHost Cybercrime Service Lets Anyone Phish Canadian Bank Users

LabHost offers three membership tiers targeting banks and online services, along with a real-time phishing management tool called LabRat that enables cybercriminals to steal 2FA protection.

Cyware News – Latest Cyber News – ​Read More

Converging State Privacy Laws and the Emerging AI Challenge

It’s time for companies to look at what they’re processing, what types of risk they have, and how they plan to mitigate that risk.

darkreading – ​Read More

TimbreStealer Campaign Targets Mexican Users with Financial Lures

The malware comes with embedded modules for orchestration, decryption, and protection, while also conducting checks to avoid sandbox environments and targeting specific industries like manufacturing and transportation sectors.

Cyware News – Latest Cyber News – ​Read More

Intel Core Ultra vPro Platform Brings New Security Features

Intel announces new and improved security features with the latest vPro platform and Core Ultra processors.

The post Intel Core Ultra vPro Platform Brings New Security Features appeared first on SecurityWeek.

SecurityWeek – ​Read More

Unmanaged Third-Party Access Threatens OT Environments

The increased connectivity between IT and OT systems, along with the rise in third-party access, introduces serious new risks that can leave organizations exposed to safety and security threats if access and connectivity are not properly controlled.

Cyware News – Latest Cyber News – ​Read More

medQ Confirms Data Breach After Software Encryption Incident

The data breach occurred when an unauthorized party encrypted software used by medQ and hosted by a third-party data center, resulting in the exposure of confidential consumer data.

Cyware News – Latest Cyber News – ​Read More

Apple, Signal Debut Quantum-Resistant Encryption, but Challenges Loom

Apple’s PQ3 for securing iMessage and Signal’s PQXH show how organizations are preparing for a future in which encryption protocols must be exponentially harder to crack.

darkreading – ​Read More