Hackers Breached Chemical Facilities’ Data In January
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) confirmed on Monday that a cyberattack in January may have compromised sensitive information related to the nation’s…
Author: Cybernoz
New Microsoft Management Console Attack Found In Wild
Threat actors are using a new attack technique that allows them to evade detection and gain full code execution of Microsoft Management Console using specially…
Microsoft hit with EU antitrust charge over Teams app – Cloud – Software
Microsoft faces a hefty antitrust fine after the European Commission accused it of illegally linking its chat and video app Teams with its Office product,…
Rogue Nations: An Assessment of State-Sponsored Cyberattacks.
By Jacques de la Riviere, CEO, Gatewatcher Few prefixes excite the cybersecurity market as much as ‘state-sponsored.’ The label immediately conjures images of well-equipped, highly-resourced…
The AI Arms Race Shaping Federal Cyber Resilience
By Gary Barlet, Federal Chief Technology Officer, Illumio At its core, the paradox of artificial intelligence (AI) in cybersecurity lies in conflicting uses. On one…
Reddit to update web standard to block automated website scraping – Software
Reddit will update a web standard used by the platform to block automated data scraping from its website, following reports that AI startups were bypassing…
Get 10x more Visibility across APTs with Red Piranha’s SOC-as-a-Service and Crystal Eye
By Adam Bennett, CEO, Red Piranha Cyberattacks are on the rise and it’s crucial for organizations to have a reliable security system that can detect…
Plugins on WordPress.org backdoored in supply chain attack
A threat actor modified the source code of at least five plugins hosted on WordPress.org to include malicious PHP scripts that create new accounts with administrative…
Progress quietly fixes MOVEit auth bypass flaws (CVE-2024-5805, CVE-2024-5806)
Progress Software has patched one critical (CVE-2024-5805) and one high-risk (CVE-2024-5806) vulnerability in MOVEit, its widely used managed file transfer (MFT) software product. According to…
EU Sanctions Russia-Linked Threat Actors
The European Union has extended its sanctions against threat actors after adding six Russian and Ukrainian nationals to its restrictive measures list. These latest sanctions…
Polyfill.io JavaScript supply chain attack impacts over 100K sites
Over 100,000 sites have been impacted in a supply chain attack by the Polyfill.io service after a Chinese company acquired the domain and the script was modified…
CDK Global faced second ransomware attack
CDK Global, a prominent provider of software solutions for automotive sales and services across 15,000 dealerships, recently faced significant disruptions due to alleged ransomware attacks.…