Microsoft Confirms PaperCut Servers Used to Deliver LockBit and Cl0p Ransomware
Microsoft has confirmed that the active exploitation of PaperCut servers is linked to attacks designed to deliver Cl0p and LockBit ransomware families. The tech giant’s…
Month: April 2023
Vulnerability Disclosure | What’s the Responsible Solution?
What Is a Vulnerability Disclosure? During a vulnerability disclosure, individuals report security weaknesses in computer systems to the organization. Disclosures can be contentious; some organizations…
Discover latest security vulnerabilities in minutes with Detectify
25 minutes. That’s how long it took to bring high severity security vulnerabilities to Detectify Asset Monitoring customers from the moment they were discovered. On…
IRCCS MultiMedica Cyberattack: LockBit Claims Responsibility
Claiming responsibility for the IRCCS MultiMedica cyberattack, LockBit ransomware has listed the Italian hospital as a victim, tweeted cybersecurity analyst and researcher Dominic Alvieri. Throughout…
DOD’s DIB-VDP Pilot Hits Six Month Milestone
Six months into the 12-month pilot with the Department of Defense’s Defense Industrial Base Vulnerability Disclosure Pilot (DOD DIB-VDP Pilot), HackerOne sat down with key…
Evasive Panda’s Malicious Campaign In China Taps App Updates
Researchers at ESET have recently uncovered a new cyber attack campaign linked to the notorious APT group Evasive Panda. According to the researchers, Evasive Panda’s…
Common Nginx misconfigurations that leave your web server open to attack
Nginx is the web server powering one-third of all websites in the world. Detectify Crowdsource has detected some common Nginx misconfigurations that, if left unchecked,…
LockBit Ransomware Group feels ashamed for the Cyber Attack
LockBit ransomware group that infiltrated the Olympia Community Unit School District 16 a few days ago has issued an unconditional apology for hacking into the…
The true numbers behind deepfake fraud
The use of artificial intelligence can result in the production of deepfakes that are becoming more realistic and challenging to differentiate from authentic content, according…
The Evolution of HackerOne’s Live Hacking Events
If you’ve heard of HackerOne, then you’ve heard about our Live Hacking Events. For years, we’ve been bringing together the brightest minds in security to…
New Phishing Attacks Using ChatGPT
Phishing has been one of the greatest threats to organizations, growing year after year. Phishing attacks have contributed to 90% of data breaches in the…
Generative AI and security: Balancing performance and risk
Are we moving too fast with AI? This is a central question both inside and outside the tech industry, given the recent tsunami of attention…