The Secret Vulnerability Finance Execs are Missing
The (Other) Risk in Finance A few years ago, a Washington-based real estate developer received a document link from First...
Read more →Category: TheHackerNews
New Hacking Cluster ‘Clasiopa’ Targeting Materials Research Organizations in Asia
Feb 23, 2023Ravie LakshmananMalware / Threat Intel Materials research organizations in Asia have been targeted by a previously unknown threat...
Read more →
Python Developers Warned of Trojanized PyPI Packages Mimicking Popular Libraries
Feb 23, 2023Ravie LakshmananSoftware Security / Supply Chain Attack Cybersecurity researchers are warning of “imposter packages” mimicking popular libraries available...
Read more →
New Threat Actor Targets Shipping Companies and Medical Labs in Asia
Feb 22, 2023Ravie LakshmananCyber Espionage / Cyber Attack Shipping companies and medical laboratories in Asia have been the subject of...
Read more →
Apple Warns of 3 New Vulnerabilities Affecting iPhone, iPad, and Mac Devices
Feb 22, 2023Ravie LakshmananEndpoint Security / Software Update Apple has revised the security advisories it released last month to include...
Read more →
3 Steps to Automate Your Third-Party Risk Management Program
Feb 22, 2023The Hacker NewsCyber Risk Management If you Google “third-party data breaches” you will find many recent reports of...
Read more →
Attackers Flood NPM Repository with Over 15,000 Spam Packages Containing Phishing Links
Feb 22, 2023Ravie LakshmananOpen Source / Supply Chain Attack In what’s a continuing assault on the open source ecosystem, over...
Read more →
Gcore Thwarts Massive 650 Gbps DDoS Attack on Free Plan Client
Feb 22, 2023The Hacker NewsServer Security / DDoS Attack At the beginning of January, Gcore faced an incident involving several...
Read more →
Threat Actors Adopt Havoc Framework for Post-Exploitation in Targeted Attacks
Feb 22, 2023Ravie LakshmananExploitation Framework / Cyber Threat An open source command-and-control (C2) framework known as Havoc is being adopted...
Read more →
U.S. Cybersecurity Agency CISA Adds Three New Vulnerabilities in KEV Catalog
Feb 22, 2023Ravie LakshmananCyber Risk / Patch Management The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three...
Read more →
VMware Patches Critical Vulnerability in Carbon Black App Control Product
Feb 22, 2023Ravie LakshmananVulnerability / Enterprise Security VMware on Tuesday released patches to address a critical security vulnerability affecting its...
Read more →
Infecting Over 50,000 Devices Daily
Feb 21, 2023Ravie LakshmananEndpoint Security / Botnet A sophisticated botnet known as MyloBot has compromised thousands of systems, with most...
Read more →