Salt Security Appoints Ori Bach as Executive VP of Product
API security company Salt Security has announced the appointment of Ori Bach to the Salt senior leadership team as executive Vice President of Product. With…
Month: July 2023
Web browsing is the primary entry vector for ransomware infections
The most widely used method for ransomware delivery in 2022 was via URL or web browsing (75.5%), Palo Alto Networks researchers have found. In 2021,…
Fruity Trojan Uses Deceptive Software Installers to Spread Remcos RAT
Jul 31, 2023THNMalware / Cyber Threat Threat actors are creating fake websites hosting trojanized software installers to trick unsuspecting users into downloading a downloader malware…
G-Cloud 13 suppliers claim framework extension is making it ‘commercially unviable’ to sell through
The government’s decision to prolong the life of the 13th iteration of the G-Cloud framework is making it a commercially unviable way for small and…
Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks
Ivanti has warned customers about a second zero-day vulnerability in its Endpoint Manager Mobile (EPMM) product that has been exploited in targeted attacks. Norwegian authorities…
AVRecon Botnet Leveraging Compromised Routers to Fuel Illegal Proxy Service
Jul 31, 2023THNNetwork Security / Botnet More details have emerged about a botnet called AVRecon, which has been observed making use of compromised small office/home…
Chief data officer interview: Neema Raphael, Goldman Sachs
Neema Raphael left San Francisco in 2003 and headed to New York to apply his tech know-how to the enterprise sector. He soon landed a…
Three flaws in Ninja Forms plugin for WordPress impact 900K sitesSecurity Affairs
Experts warn of vulnerabilities impacting the Ninja Forms plugin for WordPress that could be exploited for escalating privileges and data theft. The Ninja Forms plugin…
Rolls Royce Cyber Attack Claimed By Network-worker Alliance
Rolls Royce, a British engineering company renowned for its production of luxury cars, aircraft engines, and other advanced technological solutions, seems to have become the…
CISA Analyzes Malware Used in Barracuda ESG Attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) has published analysis reports on three malware families deployed in an attack exploiting a recent remote command…
Experts warn attackers started exploiting Citrix ShareFile RCE flawSecurity Affairs
Researchers warn that threat actors started exploiting Citrix ShareFile RCE vulnerability CVE-2023-24489 in the wild. Citrix ShareFile is a widely used cloud-based file-sharing application, which…
Microsoft fixes WSUS servers not pushing Windows 11 22H2 updates
Microsoft fixed a known issue impacting WSUS (Windows Server Update Services) servers upgraded to Windows Server 2022, causing them not to push Windows 11 22H2…