‘Termite’ Ransomware Likely Behind Cleo Zero-Day Attacks
The threat actor group recently took credit for a similar attack on Blue Yonder that affected multiple organizations, including Starbucks.
darkreading – Read More
Black Basta Ransomware Uses MS Teams, Email Bombing to Spread Malware
The Black Basta ransomware group is using advanced social engineering tactics and a multi-stage infection process to target organizations.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Adobe Patches Over 160 Vulnerabilities Across 16 Products
Adobe has patched over 160 vulnerabilities across over a dozen products, including Reader, Illustrator, Photoshop and Connect.
The post Adobe Patches Over 160 Vulnerabilities Across 16 Products appeared first on SecurityWeek.
SecurityWeek – Read More
Dell Urges Immediate Update to Fix Critical Power Manager Vulnerability
A critical security flaw in Dell Power Manager has been discovered that could allow attackers to compromise your systems and execute arbitrary code.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
US sanctions Chinese cyber firm for compromising ‘thousands’ of firewalls in 2020
Sichuan Silence Information Technology Company and one of its employees, Guan Tianfeng, were the targets of the sanctions, and the Justice Department indicted Guan for his role in the attacks. The State Department also issued a $10 million reward for additional information on the company or Guan.
The Record from Recorded Future News – Read More
Wyden seeks stricter telecom cyber standards following Salt Typhoon breach
Wyden’s bill would require the FCC to implement security requirements for telecom carriers that were originally included in a 1994 federal law but that the agency never fully acted upon.
The Record from Recorded Future News – Read More
Cybercrime Gangs Abscond With Thousands of AWS Credentials
The Nemesis and ShinyHunters attackers scanned millions of IP addresses to find exploitable cloud-based flaws, though their operation ironically was discovered due to a cloud misconfiguration of their own doing.
darkreading – Read More
US Senator announces new bill to secure telecom companies in wake of Chinese hacks
U.S. Democratic Senator Ron Wyden announced a new draft bill with the goal of securing American telephone networks and Americans’ communications in response to the massive hack of telecom providers allegedly done by Chinese government hackers. In a press release on Tuesday, Wyden announced the Secure American Communications Act. The bill would order the Federal […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
Cleo File Transfer Tool Vulnerability Exploited in Wild Against Enterprises
CVE-2024-50623, an improperly patched vulnerability affecting Cleo file transfer tools, has been exploited in the wild.
The post Cleo File Transfer Tool Vulnerability Exploited in Wild Against Enterprises appeared first on SecurityWeek.
SecurityWeek – Read More
Lessons From the Largest Software Supply Chain Incidents
The software supply chain is a growing target, and organizations need to take special care to safeguard it.
darkreading – Read More