Collaborate Disseminate
The high-severity defect affects a widely used — but largely hidden — archive tool that spans many forks.
The post Researchers uncover remote code execution flaw in abandoned Rust code library appeared first on CyberScoop.
Continue reading Researchers uncover remote code execution flaw in abandoned Rust code library
The NSA did not confirm nor deny the allegations made by China’s Ministry of State Security. China said the origins of the attack date back to March 2022.
The post China’s spy agency accuses NSA of yearslong attack on the country’s timekeeping service appeared first on CyberScoop.
Authorities arrested seven people allegedly involved in the operation and seized 1,200 SIM boxes containing 40,000 active SIM cards.
The post Europol dismantles cybercrime network linked to $5.8M in financial losses appeared first on CyberScoop.
Continue reading Europol dismantles cybercrime network linked to $5.8M in financial losses
Research from Cisco Talos and Google Threat Intelligence Group underscores the extent to which North Korea-aligned attackers attempt to avoid detection.
The post North Korean operatives spotted using evasive techniques to steal data and cryptocurrency appeared first on CyberScoop.
Matthew Lane pleaded guilty to crimes stemming from attacks on PowerSchool and a U.S. telecom company earlier this year. His sentence is half the amount prosecutors sought in the cause.
The post PowerSchool hacker sentenced to 4 years in prison appeared first on CyberScoop.
Continue reading PowerSchool hacker sentenced to 4 years in prison
Cyber authorities issued their second emergency directive in three weeks. This one requires agencies to mitigate or disconnect potentially compromised F5 devices and services.
The post CISA warns of imminent risk posed by thousands of F5 products in federal agencies appeared first on CyberScoop.
Continue reading CISA warns of imminent risk posed by thousands of F5 products in federal agencies
The tech giant addressed a record-high number of defects for the year in its latest update.
The post Microsoft’s Patch Tuesday fixes 175 vulnerabilities, including two actively exploited zero-days appeared first on CyberScoop.
The cryptocurrency seizure and sanctions targeting the Prince Group, associates and affiliated businesses mark the most extensive action taken against cybercrime operations in the region to date.
The post Officials crack down on Southeast Asia cybercrime networks, seize $15B appeared first on CyberScoop.
Continue reading Officials crack down on Southeast Asia cybercrime networks, seize $15B
The vendor belatedly admitted the max-severity vulnerability was actively exploited weeks after researchers and officials confirmed as much independently.
The post Fortra cops to exploitation of GoAnywhere file-transfer service defect appeared first on CyberScoop.
Continue reading Fortra cops to exploitation of GoAnywhere file-transfer service defect
The security vendor’s customers have confronted a barrage of actively exploited defects since 2021. The brute-force attack on a company-controlled system underscores broader security pitfalls are afoot.
The post SonicWall admits attacker accessed all customer firewall configurations stored on cloud portal appeared first on CyberScoop.