Ivanti warns of three more CSA zero-days exploited in attacks
Image: MidjourneyAmerican IT software company Ivanti has released security updates to fix three new Cloud Services Appliance (CSA) zero-days tagged as actively exploited in attacks.…
Month: October 2024
Ukrainian Hackers Attack Russian Media Following Putin’s Birthday
Ukrainian hackers launched a large-scale attack on Russian state media company VGTRK on October 7, coinciding with President Vladimir Putin’s 72nd birthday. The attack, described…
What Google’s U-Turn on Third-Party Cookies Means for Chrome Privacy
The apparent death of cookies also won’t matter much to Google, which has a ton of data from multiple services in addition to Chrome and…
Lua Malware Targeting Student Gamers via Fake Game Cheats
Morphisec Threat Labs uncovers sophisticated Lua malware targeting student gamers and educational institutions. Learn how these attacks work and how to stay protected. The cybersecurity…
Comcast Ransomware attack and American Water Cyber Attack shutdown
Comcast Ransomware Attack 2024: Overview and Implications In a significant cybersecurity breach, telecom giant Comcast has reported that a ransomware attack has compromised the personal…
Datacentre power purchase agreements: Are they the right way to lower emissions?
Renewables-based electricity generation in the UK shot to 39TWh (terawatt-hours) in the first quarter of 2024, or 50.9% of the mix. This is the second…
LemonDuck Malware Exploiting SMB Vulnerabilities To Attack Windows Servers
LemonDuck malware has evolved from a cryptocurrency mining botnet into a “versatile malware” that is capable of “stealing credentials,” “disabling security measures,” and “propagating through…
LemonDuck Malware Exploiting SMB Vulnerabilities To Attack Windwos Servers
The attackers exploited the EternalBlue vulnerability to gain initial access to the observatory farm, creating a hidden administrative share and executing a malicious batch file…
Building a robust NIS 2 compliance strategy
Arriving on 17th October this year, NIS 2 is the EU’s most stringent cybersecurity Directive so far. Your level of cybersecurity maturity, risk management capabilities and…
DWP CIO Rich Corbridge leaving to join property developer
Rich Corbridge, the chief digital and information officer at the Department for Work and Pensions (DWP), is leaving his role in November to take up…
North Korean APT Hackers Exploiting DMARC Misconfigs For Phishing Attacks
DMARC is an email authentication protocol that helps domain owners protect against unauthorized use like “email spoofing” and “phishing attacks.” By leveraging existing protocols like…
Likho Hackers Using MeshCentral For Remotely Managing Victim Systems
The Awaken Likho APT group launched a new campaign in June of 2024 with the intention of targeting Russian government agencies and businesses by targeting…