Collaborate Disseminate
Multiple researchers and CISA have confirmed active exploitation of the maximum-severity defect. Fortra, the company behind the file-transfer service, remains silent.
The post Microsoft pins GoAnywhere zero-day attacks to ransomware affiliate Storm-1175 appeared first on CyberScoop.
Continue reading Microsoft pins GoAnywhere zero-day attacks to ransomware affiliate Storm-1175
The notorious ransomware group exploited multiple vulnerabilities, including a zero-day, for at least eight weeks before alleged victims received extortion demands.
The post Oracle zero-day defect amplifies panic over Clop’s data theft attack spree appeared first on CyberScoop.
Continue reading Oracle zero-day defect amplifies panic over Clop’s data theft attack spree
Okta thwarted the supply-chain attack with security controls it had in place. Zscaler did not. Their experiences provide insights into the root of a much broader problem.
The post Security leaders at Okta and Zscaler share lessons from Salesloft Drift attacks appeared first on CyberScoop.
Continue reading Security leaders at Okta and Zscaler share lessons from Salesloft Drift attacks
The open-source software company said exposure is limited to consulting engagements, adding that it hasn’t found evidence of personal or sensitive data theft.
The post Red Hat confirms breach of GitLab instance, which stored company’s consulting data appeared first on CyberScoop.
Continue reading Red Hat confirms breach of GitLab instance, which stored company’s consulting data
The emails, which are littered with broken English, aim to instill fear, apply pressure, threaten public exposure and seek negotiation for a ransom payment.
The post Here is the email Clop attackers sent to Oracle customers appeared first on CyberScoop.
Continue reading Here is the email Clop attackers sent to Oracle customers
Okta Threat Intelligence uncovered a large-scale and sustained operation, reflecting the North Korean regime’s pursuit of any opportunity that allows for remote employment.
The post North Korea IT worker scheme swells beyond US companies appeared first on CyberScoop.
Continue reading North Korea IT worker scheme swells beyond US companies
Researchers tell CyberScoop that notorious ransomware group Clop may be behind the email barrage.
The post Oracle customers being bombarded with emails claiming widespread data theft appeared first on CyberScoop.
Continue reading Oracle customers being bombarded with emails claiming widespread data theft
Phantom Taurus has stolen sensitive data from ministries of foreign affairs, embassies, diplomats and telecom networks in the Middle East, Africa and Asia, researchers said.
The post Palo Alto Networks spots new China espionage group showcasing advanced skills appeared first on CyberScoop.
Continue reading Palo Alto Networks spots new China espionage group showcasing advanced skills
Authorities arrested 260 cybercrime suspects during a two-week operation spanning 14 African countries, Interpol announced Friday. The globally coordinated summertime crackdown dubbed “Operation Contender 3.0” targeted criminal networks that facilitated romance scams and sextortion, officials said. Interpol said total losses attributed to the scam syndicates amounted to about $2.8 million, involving almost 1,500 victims. Authorities […]
The post Interpol operation disrupts romance scam and sextortion networks in Africa appeared first on CyberScoop.
Continue reading Interpol operation disrupts romance scam and sextortion networks in Africa
Forta, the vendor behind the file-transfer service software, has yet to report exploitation or address evidence of compromise. Independent researchers say otherwise.
The post Worries mount over max-severity GoAnywhere defect appeared first on CyberScoop.
Continue reading Worries mount over max-severity GoAnywhere defect