New ‘RDStealer’ Malware Targets RDP Connections
A state-sponsored espionage campaign is leveraging new custom malware to monitor incoming remote desktop protocol (RDP) connections and infect connecting clients with a backdoor, according…
Category: SecurityWeek
OT:Icefall: Vulnerabilities Identified in Wago Controllers
Forescout Technologies has disclosed the details of three vulnerabilities impacting operational technology (OT) products from Wago and Schneider Electric. The flaws were identified as part…
Fulfilling Expected SEC Requirements for Cybersecurity Expertise at Board Level
The U.S. Securities and Exchange Commission (SEC) is expected to introduce a rule requiring demonstration of cybersecurity expertise at the board level for public companies.…
Australian Government Says Its Data Was Stolen in Law Firm Ransomware Attack
The Office of the Australian Information Commissioner (OAIC) says some of its files were stolen in a ransomware attack on law firm HWL Ebsworth. One…
Asus Patches Highly Critical WiFi Router Flaws
Taiwanese computer hardware manufacturer Asus on Monday shipped urgent firmware updates to address vulnerabilities in its WiFi router product lines and warned users of the…
Akeyless Launches SaaS-based External Secrets Manager
Secrets are fundamental to cybersecurity. They comprise the secret data that allows individual authorization and access to or between systems. But if secrets are not…
New Information Stealer ‘Mystic Stealer’ Rising to Fame
A new information stealer malware is quickly becoming popular among hackers on prominent underground forums, according to a warning from cybersecurity company Cyfirma. Dubbed Mystic…
Western Digital Blocks Unpatched Devices From Cloud Services
Western Digital has blocked access to its cloud services for devices running firmware versions impacted by a known and critical security vulnerability. The move, which…
Keep it, Tweak it, Trash it – What to do with Aging Tech in an Era of Consolidation
Consolidating security tools is a growing industry trend. In fact, a survey by Gartner found that 75% of organizations were pursuing security vendor consolidation in…
Ransomware Gang Takes Credit for February Reddit Hack
The Alphv/BlackCat ransomware gang has taken credit for the February 2023 cyberattack against social media site Reddit, claiming to have stolen 80 gigabytes of data.…
Watch on Demand: 2023 CISO Forum Sessions
Designed for senior level cybersecurity leaders to discuss, share and learn innovative information security and risk management strategies, SecurityWeek’s CISO Forum, took place as a…
A Russian Ransomware Gang Breaches the Energy Department and Other Federal Agencies
The Department of Energy and several other federal agencies were compromised in a Russian cyber-extortion gang’s global hack of a file-transfer program popular with corporations…