Ukrainian Police have arrested a ransomware cryptor developer in connection with the notorious Conti and LockBit groups. This arrest was the result of Operation Endgame, a major operation that aims to dismantle key elements of these cybercriminal organizations.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
A threat actor exploited the Snowflake platform to target organizations for data theft and extortion using compromised credentials. Learn how to protect your business from this threat.
Security | TechRepublic – Read More
Accused cybercriminal has special skills that helped Conti and LockBit ransomware evade detection, according to law enforcement.
darkreading – Read More
The zero-day is tagged as CVE-2024-32896 and described as an elevation of privilege issue in Pixel Firmware.
The post Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation appeared first on SecurityWeek.
SecurityWeek – Read More
The cybersecurity researchers at Symantec have found “strong evidence” suggesting that the Black Basta ransomware gang exploited a critical Windows vulnerability (CVE-2024-26169) before it was patched by Microsoft on March 12, 2024, through its regular Patch Tuesday updates.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
An RCE vulnerability that affects the Web scripting language on Windows systems is easy to exploit and can provide a broad attack surface.
darkreading – Read More
Not enough organizations are conducting regular audits to ensure their cloud environments are secured.
Latest stories for ZDNET in Security – Read More
Microsoft’s June 2024 Patch Tuesday updates resolve a zero-click Outlook vulnerability leading to remote code execution.
The post Microsoft Patches Zero-Click Outlook Vulnerability That Could Soon Be Exploited appeared first on SecurityWeek.
SecurityWeek – Read More
Alignment between these domains is quickly becoming a strategic imperative.
darkreading – Read More
Cybersecurity researchers have warned of an ongoing cryptojacking campaign targeting misconfigured Kubernetes clusters to mine Dero cryptocurrency.
Cloud security firm Wiz, which shed light on the activity, said it’s an updated variant of a financially motivated operation that was first documented by CrowdStrike in March 2023.
“In this incident, the threat actor abused anonymous access to an
The Hacker News – Read More