After Zero-Day Attacks, MOVEit Turns to Security Service Packs
Faced with a barrage of ransomware attacks hitting zero-days in its MOVEit product line, Progress Software late Thursday announced plans to release regular service sacks…
Category: SecurityWeek
In Other News: Healthcare Product Flaws, Free Email Security Testing, New Attack Techniques
SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a…
Former Contractor Employee Charged for Hacking California Water Treatment Facility
A 53-year-old man from Tracy, California, has been charged for allegedly hacking into the systems of a water treatment facility in an attempt to delete…
Iranian Cyberspies Target US-Based Think Tank With New macOS Malware
In a recent attack against a US-based think tank, Iranian cyberespionage group Charming Kitten was observed porting a PowerShell backdoor to macOS, Proofpoint reports. The…
Vulnerabilities in PiiGAB Product Could Expose Industrial Organizations to Attacks
Potentially serious vulnerabilities discovered by researchers in a PiiGAB product could expose industrial organizations to remote hacker attacks. PiiGAB is a Sweden-based company that provides…
Two Apps Hosted on Google Play Caught Sending User Data to Chinese Servers
Two file management applications hosted on Google Play, with more than 1.5 million combined downloads, were caught sending user data to servers in China, mobile…
CISA, FBI Warning: Truebot Hackers Exploiting Netwrix Auditor Flaw
The U.S. government’s cybersecurity agency CISA on Thursday warned hackers linked to the Truebot malware operation are exploiting a known vulnerability in the Netwrix Auditor…
Now’s the Time for a Pragmatic Approach to New Technology Adoption
To say there’s been a lot of hype around AI lately would be an understatement. We’ve all seen headlines touting how AI could change the…
Android Security Updates Patch 3 Exploited Vulnerabilities
Security updates that Google released this week for Android resolve 43 vulnerabilities, including three that have been exploited in attacks. The exploited flaws, tracked as…
JumpCloud Says All API Keys Invalidated to Protect Customers
Device, identity and access management solutions provider JumpCloud has reset customer API keys in response to an “ongoing incident”. JumpCloud has yet to share any…
Shell Confirms MOVEit-Related Breach After Ransomware Group Leaks Data
Energy giant Shell has confirmed that personal information belonging to employees has been compromised as a result of the recent MOVEit Transfer hack. The Cl0p…
28,000 Impacted by Data Breach at Pepsi Bottling Ventures
More than 28,000 individuals were impacted by a data breach at independent bottling company Pepsi Bottling Ventures. Discovered on January 10, the data breach occurred…