Microsoft-signed driver used in ransomware attacks
A zero-day vulnerability in a Microsoft-signed driver from Paragon Software is being exploited in ransomware attacks. CERT Coordination Center on...
Read more →Category: CyberSecurityDive
Massive Iran-linked botnet launches DDoS attacks against telecom, gaming companies
Dive Brief: A massive botnet comprising more than 30,000 hacked security cameras and network video recorders is being used to...
Read more →
Critical infrastructure at state, local levels at heightened risk of cyberattacks
Dive Brief: State and local communities are facing a rise in cyber threats from nation-state-linked and criminal threat groups, which...
Read more →
Employment screening provider data breach affects 3.3M people
A data breach at DISA Global Solutions, Inc., a third-party employment screening services provider, affected more than 3.3 million people,...
Read more →
CISA taps Karen Evans as executive assistant director for cybersecurity
Dive Brief: The Cybersecurity and Infrastructure Security Agency confirmed that Karen Evans was named executive assistant director for cybersecurity under...
Read more →
Leaked ransomware chat logs reveal Black Basta’s targeted CVEs
Dive Brief: Researchers analyzed leaked chat logs from the infamous Black Basta ransomware gang and found references to 62 unique...
Read more →
Nearly 3K Ivanti Connect Secure instances vulnerable to critical flaw
Dive Brief: Approximately 2,850 IP addresses are vulnerable to CVE-2025-22467, a critical stack buffer-overflow vulnerability that affects Ivanti Connect Secure...
Read more →
State-linked threat groups collaborating with hacktivists, other actors to target infrastructure
Critical infrastructure providers are under threat of more frequent and sophisticated attacks as state-linked threat groups are increasingly collaborating with...
Read more →
DeepSeek’s AI shake-up could boost cybersecurity risks, spending: report
Dive Brief: Global cybersecurity spending is projected to surge in coming years as artificial intelligence tools like chatbots and agents...
Read more →
Nearly 3,000 Ivanti Connect Secure instances vulnerable to critical flaw
Dive Brief: Approximately 2,850 IP addresses are vulnerable to CVE-2025-22467, a critical stack buffer-overflow vulnerability that affects Ivanti Connect Secure...
Read more →
More than 400 SonicWall firewall instances remain vulnerable to attack
Dive Brief: More than 5,000 instances of an authentication bypass flaw in SonicWall firewalls are exposed to the internet and...
Read more →
Attackers exploiting Cisco vulnerabilities tied to Salt Typhoon campaign
Dive Brief: GreyNoise researchers observed active exploitation of two Cisco vulnerabilities, CVE-2018-0171 and CVE-2023-20198, which reportedly have been used in recent...
Read more →