CISA & FBI Releases TTPs & IOCs Used by Phobos Ransomware Group
The FBI, CISA, and MS-ISAC are urging critical infrastructure organizations to be vigilant against Phobos ransomware. This advisory is part of the #StopRansomware initiative, providing…
Latest Cybersecurity News — Page 4240
View all →
3 free data protection regulation courses you can take right now
Increasingly, information about us, and even by us, is being processed. Even mundane or insignificant details can be combined and linked with other data in…
What organizations need to know about the Digital Operational Resilience Act (DORA)
In this Help Net Security interview, Kris Lovejoy, Global Security and Resilience Leader at Kyndryl, discusses the impact of the Digital Operational Resilience Act (DORA)…
Critical JetBrains TeamCity On-Premises Flaws Could Lead to Server Takeovers
Mar 05, 2024NewsroomVulnerability / Network Security A new pair of security vulnerabilities have been disclosed in JetBrains TeamCity On-Premises software that could be exploited by…
Don’t Believe the Hype: Myth-busting Zero Trust Marketing
[By Rob McNutt, SVP Network Security at Forescout] The greatest threat to zero trust is not among a group of the usual cybersecurity suspects. It…
Proactive Patching Translates into Less Ransomware Payouts
[By Joao Correia, Technical Evangelist at TuxCare (www.tuxcare.com), a global innovator in enterprise-grade cybersecurity for Linux] Today’s threat actors are driven by a variety of…
American Express Customer Data Compromised in Third-Party Service Provider Breach
In a concerning development for financial security, American Express has announced that its customers’ credit card information has been compromised in a data breach. The…
ScreenConnect flaws exploited to drop new ToddleShark malware
The North Korean APT hacking group Kimsuky is exploiting ScreenConnect flaws, particularly CVE-2024-1708 and CVE-2024-1709, to infect targets with a new malware variant dubbed ToddleShark.…
Ivanti follows CISA warning with new protection tool – Security
Ivanti has updated its integrity checker, after the US Cyber and Infrastructure Security Agency (CISA) warned that some attackers might have maintained persistent compromises of…
Exploit available for new critical TeamCity auth bypass bug, patch now
A critical vulnerability (CVE-2024-27198) in the TeamCity On-Premises CI/CD solution from JetBrains can let a remote unauthenticated attacker take control of the server with administrative…
NBN Co wants to boost its 100/20Mbps tier to 500/50Mbps – Telco/ISP
NBN Co will today unveil a plan to change the top three speed tiers for residential broadband by the end of the year for users…
Hackers steal Windows NTLM authentication hashes in phishing attacks
The hacking group known as TA577 has recently shifted tactics by using phishing emails to steal NT LAN Manager (NTLM) authentication hashes to perform account hijacks. TA577…