September 27, 2024 Alert On INC Ransomware Attacks Conducted by Vanilla Tempest (Vice Society) Threat Group Microsoft published an alert regarding a cybercriminal group known as Vanilla Tempest, which is deploying INC ransomware to attack the U.S. healthcare industry. INC ransomware, ... Read more
September 12, 2024 Alert Issued About Russian Hacking Group Attacking Critical Infrastructure The Federal Bureau of Investigation (FBI), National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), and their partners have published a joint cybersecurity warning ... Read more
August 9, 2024 IT Employees Targeted by Hunters International Ransomware Group The Hunters International threat group impersonates legitimate IP and port scanning programs to install malware to obtain IT workers’ initial access to systems. The Hunters ... Read more
June 6, 2024 Ransomware Attack on Synnovis Affects London Hospitals Synnovis, a UK-based medical laboratory services provider encountered a ransomware attack that disrupted patient services at several NHS hospitals in London. Operations at the following ... Read more
May 30, 2024 Agencies Alert of Increasing Attacks on Healthcare Providers by Black Basta Ransomware Group The Federal Bureau of Investigation, Cybersecurity and Infrastructure Security Agency, Multi-State Information Sharing and Analysis Center, and Department of Health and Human Services published a ... Read more
March 19, 2024 Joint Fact Sheet Warns of Volt Typhoon Threat to Critical Infrastructure The U.S. Cybersecurity and Infrastructure Security Agency (CISA), along with the Federal Bureau of Investigation (FBI) and international partners, have issued a joint fact sheet ... Read more
March 15, 2024 Lurie Children’s Hospital Ransomware Attack and UNITE HERE Data Breach EHR System of Lurie Children’s Hospital Now Restored One Month After Ransomware Attack Ann & Robert H. Lurie Children’s Hospital located in Chicago encountered a ... Read more
March 4, 2024 MicroDicom DICOM Viewer Vulnerabilities, Ivanti Connect Secure and Policy Secure Vulnerabilities and Threat Intelligence about Phobos Ransomware Five Eyes Agencies Notifies of Persistent Exploitation of Ivanti Connect Secure and Policy Secure Vulnerabilities The Five Eyes Cybersecurity Agencies have given a notification that ... Read more
February 20, 2024 LockBit Ransomware Operation Disrupted by Law Enforcement; Decryptor Released The world’s most harmful cybercrime group – LockBit – has had its infrastructure seized in a global law enforcement operation. Law enforcement agencies from 10 ... Read more
February 9, 2024 Critical FortiOS SSL VPN Vulnerability Likely Being Exploited in Attacks Fortinet has disclosed a new critical flaw in the FortiOS SSL VPN which is most likely already being exploited in the wild. The out-of-bounds write ... Read more
February 6, 2024 Ivanti Connect Secure and Policy Secure Vulnerability Under Mass Exploitation A zero day vulnerability affecting Ivanti Connect Secure and Ivanti Policy Secure that was disclosed by Ivanti on January 31, 2023, is now under mass ... Read more
January 23, 2024 74% of Organizations Punish Employees for Phishing Failures Many cybersecurity threats keep cybersecurity professionals awake at night but phishing attacks top of the list. According to a recent survey of cybersecurity professionals by ... Read more
January 19, 2024 Inferno Drainer: A $80 million crypto heist and the rising threat of crypto-drainers The digital finance sector has witnessed a significant breach in 2023 with the advent of the Inferno Drainer campaign. Over the past year, this sophisticated ... Read more
January 16, 2024 Mass Exploitation of Ivanti VPN and NAC Zero-Day Vulnerabilities Detected On January 10, 2024, Ivanti disclosed two zero day vulnerabilities in Ivanti Connect Secure VPN and Policy Secure NAC appliances that have been actively exploited ... Read more
January 3, 2024 Black Basta Ransomware Decryptor Developed Researchers at Security Research (SR) Labs have recently announced that they identified a weakness in the encryption algorithm used by Black Basta ransomware which can ... Read more
December 21, 2023 Google Patches Actively Exploited Zero-Day Bug in Chrome A high-severity zero day vulnerability in the Google Chrome browser is being actively exploited in the wild. The vulnerability is tracked as CVE-2023-7024 and is ... Read more
November 28, 2023 Max Severity OwnCloud Flaw Actively Exploited in the Wild A critical vulnerability in OwnCloud, a popular open-source self-hosted file synchronization and sharing solution, has started to be exploited by cyber actors. The vulnerability affects ... Read more
November 14, 2023 Feds Warn of Potential Rebrand of Royal Ransomware Group A joint Cybersecurity Advisory> has been issued by the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) that includes updated ... Read more
November 7, 2023 Critical Atlassian Confluence Data Center and Server Vulnerability Exploited by Ransomware Gangs On October 31, 2023, Atlassian issued a security advisory about a critical vulnerability that affected all versions of Confluence Data Center and Server. The improper ... Read more
October 26, 2023 Generative AI Saves Phishers 16 Hours per Campaign There is mounting concern that generative AI will be used by cybercriminals to generate convincing phishing emails that are almost impossible for users to identify ... Read more
October 17, 2023 Cisco Warns of Actively Exploited Zero-Day IOS XE Vulnerability Cisco has issued a security alert about an actively exploited critical zero-day vulnerability in its IOS XE software and is urging all customers to take ... Read more
October 12, 2023 At Least $2.7 Billion Lost to Social Media Scams Since 2021 Social media networks are being extensively abused by scammers who use the networks to advertise fake products and investment schemes and conduct romance scams. According ... Read more
October 11, 2023 Vulnerability in HTTP/2 Protocol Exploited in Record-Breaking DDoS Attacks A zero-day vulnerability in the HTTP/2 protocol is being actively exploited by threat actors to launch massive DDoS attacks. Google, Cloudflare and Amazon Web Services (AWS) ... Read more
October 10, 2023 October 2023 Patch Tuesday: 103 Flaws Fixed, including 3 Actively Exploited 0Days Microsoft released patches to fix 103 vulnerabilities across its product suite on October 2023 Patch Tuesday, including 3 zero-day vulnerabilities that are being actively exploited ... Read more
October 4, 2023 LastPass Employees and Customers Targeted in Phishing Campaign A widespread phishing campaign has been detected that is targeting LastPass employees and customers. The campaign was first detected in mid-September, and a second wave ... Read more
September 22, 2023 Apple Releases Emergency Patches to Fix 3 Actively Exploited Zero-Day Vulnerabilities Apple has released emergency patches to address three zero-day vulnerabilities that are being actively exploited in the wild in attacks on iPhone and Mac users. A ... Read more
September 13, 2023 Google Releases Emergency Chrome Patch for Actively Exploited Zero Day Vulnerability Google has released an emergency patch to fix an actively exploited vulnerability in its Chrome browser. The vulnerability, tracked as CVE-2023-4863, is a heap buffer ... Read more
September 13, 2023 Microsoft Patches 2 Actively Exploited Vulnerabilities on September 2023 Patch Tuesday September 2023 Patch Tuesday has seen Microsoft release patches to fix 59 vulnerabilities across its product suite, including two actively exploited vulnerabilities. 5 flaws are ... Read more
September 11, 2023 Apache RocketMQ Vulnerability Actively Exploited by Multiple Threat Actors A critical vulnerability in the Apache RocketMQ distributed messaging and streaming platform is being exploited by multiple threat actors. The vulnerability is tracked as CVE-2023-33246 ... Read more
September 11, 2023 HijackLoader Malware Loader Proving Popular with Cybercriminals Security researchers at Zscaler ThreatLabz have identified a new malware loader called HijackLoader which is proving popular within the cybercriminal community. The malware is being ... Read more