Fresh MOVEit Bug Under Attack Mere Hours After Disclosure
The high-severity CVE-2024-5806 allows cyberattackers to authenticate to the file-transfer platform as any valid user, with accompanying privileges.
darkreading – Read More
Indonesia Refuses to Pay $8M Ransom After Cyberattack
More than 200 regional and national government agencies have been impacted by the ransomware attack, and few of them are once again operational.
darkreading – Read More
Threat Actor May Have Accessed Sensitive Info on CISA Chemical App
An unknown adversary compromised a CISA app containing the data via a vulnerability in the Ivanti Connect Secure appliance this January.
darkreading – Read More
Indonesia won’t pay $8M ransom in data center attack that disrupted major public services
Targeting a national data center, the attack brought down major public services, including airport immigration. Data migration efforts are ongoing.
Latest stories for ZDNET in Security – Read More
WordPress Supply Chain Attack Spreads Across Multiple Plug-Ins
Injected malicious JavaScript code gives attackers administrator rights on websites, and fills sites with SEO spam.
darkreading – Read More
Report: Cloud Breaches Impact Nearly Half of Organizations
According to the Thales 2024 Cloud Security Study, 44% of organizations have experienced a cloud data breach, with 14% reporting incidents in the past year. Human error and misconfigurations were the top root causes, affecting 31% of cases.
Cyware News – Latest Cyber News – Read More
FBI Warns of Fake Law Firms Targeting Crypto Scam Victims
The FBI has issued a warning about cybercriminals pretending to be law firms and lawyers offering cryptocurrency recovery services. These scammers target victims of investment scams, stealing funds and personal information.
Cyware News – Latest Cyber News – Read More
EU Sanctions Six Russian Hackers
The European Council has added six Russian hackers to the EU’s sanctions list for their cyberattacks against member states and Ukraine.
The post EU Sanctions Six Russian Hackers appeared first on SecurityWeek.
SecurityWeek – Read More
P2PInfect Botnet Targets Redis Servers with New Ransomware Module
P2PInfect, a previously dormant peer-to-peer malware botnet, has recently become active and is now targeting Redis servers. The botnet has introduced new features like cron-based persistence mechanisms and SSH lockout.
Cyware News – Latest Cyber News – Read More
Stolen Singaporean Identities Sold on Dark Web Starting at $8
Singapore citizens, beware! Cybercriminals are targeting your digital identities and KYC data, starting at just $8, putting users at risk of exploitation. Learn how to protect your data, finances, and reputation with strong passwords, multi-factor authentication, and smart online habits.
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More