Hacker selling data allegedly stolen in US Marshals Service hack
A threat actor is selling on a Russian-speaking hacking forum what they claim to be hundreds of gigabytes of data allegedly stolen from U.S. Marshals…
Category: Bleeping Computer
LockBit ransomware claims Essendant attack, company says “network outage”
LockBit ransomware has claimed a cyber attack on Essendant, a wholesale distributer of office products after a “significant” and ongoing outage knocked the company’s operations…
Critical Microsoft Outlook bug PoC shows how easy it is to exploit
Security researchers have shared technical details for exploiting a critical Microsoft Outlook vulnerability for Windows (CVE-2023-23397) that allows hackers to remotely steal hashed passwords by simply…
US federal agency hacked using old Telerik bug to steal data
Last year, a U.S. federal agency’s Microsoft Internet Information Services (IIS) web server was hacked by exploiting a critical .NET deserialization vulnerability in the Progress…
Healthcare provider ILS warns 4.2 million people of data breach
Independent Living Systems (ILS), a Miami-based healthcare administration and managed care solutions provider, suffered a data breach that exposed the personal information of 4,226,508 individuals.…
Microsoft March 2023 Patch Tuesday fixes 2 zero-days, 83 flaws
Tag CVE ID CVE Title Severity Azure CVE-2023-23408 Azure Apache Ambari Spoofing Vulnerability Important Client Server Run-time Subsystem (CSRSS) CVE-2023-23409 Client Server Run-Time Subsystem (CSRSS)…
Windows 11 KB5023706 and KB5023698 cumulative updates released
Microsoft has released the Windows 11 KB5023706 and KB5023698 cumulative updates for versions 22H2 and 21H2 to fix security vulnerabilities and bugs in the operating…
Windows 10 KB5023696 and KB5023697 updates released
It’s Microsoft’s March 2023 Patch Tuesday, and the new Windows 10 KB5023696 and KB5023697 cumulative updates are now available for versions 22H2, version 21H2, version…
Microsoft fixes Windows zero-day exploited in ransomware attacks
Microsoft has patched another zero-day bug used by attackers to circumvent the Windows SmartScreen cloud-based anti-malware service and deploy Magniber ransomware payloads without raising any…
Reddit is down in major outage blocking access to web, mobile apps
Reddit is investigating a major outage that is blocking users worldwide from accessing the social network’s website and mobile apps. Users are now seeing “Our CDN…
Rubrik confirms data theft in GoAnywhere zero-day attack
Cybersecurity company Rubrik has confirmed that its data was stolen using a zero-day vulnerability in the Fortra GoAnywhere secure file transfer platform. Rubrik is a…
SAP releases security updates fixing five critical vulnerabilities
Software vendor SAP has released security updates for 19 vulnerabilities, five rated as critical, meaning that administrators should apply them as soon as possible to…