Microsoft enforces number matching to fight MFA fatigue attacks
Microsoft has started enforcing number matching in Microsoft Authenticator push notifications to fend off multi-factor authentication (MFA) fatigue attacks. In...
Read more →Category: Bleeping Computer
QR codes used in fake parking tickets, surveys to steal your money
As QR codes continue to be heavily used by legitimate organizations—from Super Bowl advertisements to enforcing parking fees and fines,...
Read more →
Iranian hacking groups join Papercut attack spree
Microsoft says Iranian state-backed hackers have joined the ongoing assault targeting vulnerable PaperCut MF/NG print management servers. These groups are tracked...
Read more →
Detecting data theft with Wazuh, the open-source XDR
Data theft is the act of stealing data stored in business databases, endpoints, and servers. The stolen data can include...
Read more →
New CS:GO map bypasses Russia’s censorship of Ukraine war news
Finish newspaper Helsinin Sanomat has created a custom Counter-Strike: Global Offensive (CS:GO) map explicitly made to bypass Russian news censorship...
Read more →
New Cactus ransomware encrypts itself to evade antivirus
A new ransomware operation called Cactus has been exploiting vulnerabilities in VPN appliances for initial access to networks of “large...
Read more →
Western Digital says hackers stole customer data in March cyberattack
Western Digital has taken its store offline and sent customers data breach notifications after confirming that hackers stole sensitive personal...
Read more →
Meet Akira — A new ransomware operation targeting the enterprise
The new Akira ransomware operation has slowly been building a list of victims as they breach corporate networks worldwide, encrypt...
Read more →
Twitter says ‘security incident’ exposed private Circle tweets
Twitter disclosed that a ‘security incident’ caused private tweets sent to Twitter Circles to show publicly to users outside of...
Read more →
New PaperCut RCE exploit created that bypasses existing detections
A new proof-of-concept (PoC) exploit for an actively exploited PaperCut vulnerability was released that bypasses all known detection rules. The PaperCut...
Read more →
Z-Library eBook site disrupted again by FBI domain seizures
The Federal Bureau of Investigation (FBI) continues to disrupt the world’s largest shadow eBook library, Z-Library, by seizing more domains...
Read more →
The Week in Ransomware – May 5th 2023
This week’s ransomware news has been dominated by a Royal ransomware attack on the City of Dallas that took down...
Read more →