Akira Ransomware’s Exploitation of SonicWall Vulnerability Continues
The Akira ransomware group continues to exploit a year-old SonicWall vulnerability for initial access and relies on pre-installed and legitimate tools to evade detection, security…
Category: SecurityWeek
Cyberattack on JLR Prompts £1.5 Billion UK Government Intervention
The UK government has announced a £1.5 billion ($2 billion) loan guarantee for Jaguar Land Rover (JLR) in response to the highly disruptive cyberattack that…
SafeHill Emerges from Stealth With $2.6 Million Pre-Seed Funding
Chicago-based SafeHill, formerly known as Tacticly, has emerged from Stealth with a $2.6 million pre-seed funding round led by Mucker Capital and Chingona Ventures. The…
Dutch Teens Arrested for Allegedly Helping Russian Hackers
Two teenage boys were arrested in the Netherlands over suspicions of spying for pro-Russian hackers, Dutch authorities announced. The two 17-year-old boys were allegedly approached…
British Department Store Harrods Warns Customers That Some Personal Details Taken in Data Breach
Harrods, the luxury British department store, has warned some customers that their personal data may have been taken in a breach of its online systems.…
In Other News: LockBit 5.0, Department of War Cybersecurity Framework, OnePlus Vulnerability
SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories…
Interpol Says 260 Suspects in Online Romance Scams Have Been Arrested in Africa
A crackdown on cybercrime coordinated by Interpol has led to the arrests across 14 African countries of 260 people suspected in online romance and extortion…
Microsoft Reduces Israel’s Access to Cloud and AI Products Over Reports of Mass Surveillance in Gaza
Microsoft said Thursday it had disabled services to a unit within the Israeli military after a company review had determined its artificial intelligence and cloud…
North Korea’s Fake Recruiters Feed Stolen Data to IT Workers
The North Korean threat actor behind the DeceptiveDevelopment campaign is supplying stolen developer information to the country’s horde of fraudulent IT workers, ESET reports. Initially…
No Patches for Vulnerabilities Allowing Cognex Industrial Camera Hacking
Some of the industrial cameras made by Cognex are affected by potentially serious vulnerabilities, but they will not receive a patch. The cybersecurity agency CISA…
New XCSSET macOS Malware Variant Hijacks Cryptocurrency Transactions
An updated variant of the sophisticated XCSSET macOS malware is monitoring the system clipboard to hijack cryptocurrency transactions, Microsoft warns. First observed in the wild…
Recent Fortra GoAnywhere MFT Vulnerability Exploited as Zero-Day
Exploitation of a recently disclosed Fortra GoAnywhere MFT vulnerability started at least one week before patches were released, cybersecurity firm watchTowr reports. Fortra fixed the…