Collaborate Disseminate
Researchers are especially concerned about a high-severity defect in SQL Server and a critical vulnerability in SPNEGO, a foundational protocol.
The post Microsoft Patch Tuesday addresses 130 vulnerabilities, none actively exploited appeared first on CyberScoop.
Continue reading Microsoft Patch Tuesday addresses 130 vulnerabilities, none actively exploited
Application Attack Matrix is a community effort designed to help defenders and organizations better understand and define how attackers use and exploit weaknesses in applications.
The post Oligo Security strives to fill application-layer gaps in MITRE ATT&CK framework appeared first on CyberScoop.
Continue reading Oligo Security strives to fill application-layer gaps in MITRE ATT&CK framework
The cybercrime ring has infiltrated more than 100 businesses since 2022, including more than a dozen since it regrouped earlier this year.
The post Scattered Spider weaves web of social-engineered destruction appeared first on CyberScoop.
Continue reading Scattered Spider weaves web of social-engineered destruction
French authorities said government agencies and businesses spanning telecom, media, finance and transportation were impacted by the widely exploited Ivanti vulnerabilities.
The post China-linked attacker hit France’s critical infrastructure via trio of Ivanti zero-days last year appeared first on CyberScoop.
Russia-based Aeza Group allegedly provided infrastructure to BianLian ransomware and the Meduza, RedLine and Lumma infostealer operators.
The post US sanctions bulletproof hosting provider for supporting ransomware, infostealer operations appeared first on CyberScoop.
Kai West, a 25-year-old British national, is accused of stealing data from more than 40 organizations during a two-year spree.
The post Notorious cybercriminal ‘IntelBroker’ arrested in France, awaits extradition to US appeared first on CyberScoop.
Continue reading Notorious cybercriminal ‘IntelBroker’ arrested in France, awaits extradition to US
The vendor disclosed the critical zero-day in NetScaler ADC and NetScaler Gateway nine days after it warned of a pair of defects in the same products.
The post Citrix users hit by actively exploited zero-day vulnerability appeared first on CyberScoop.
Continue reading Citrix users hit by actively exploited zero-day vulnerability
The number of devices infected by LapDogs is smaller than other ORBs, but that is likely by design, according to SecurityScorecard researchers.
The post Stealth China-linked ORB network gaining footholds in US, East Asia appeared first on CyberScoop.
Continue reading Stealth China-linked ORB network gaining footholds in US, East Asia
Experts told CyberScoop the research ‘doesn’t pass a sniff test’ and detracts from needed conversations around credential abuse and information stealers.
The post The ‘16 billion password breach’ story is a farce appeared first on CyberScoop.
Continue reading The ‘16 billion password breach’ story is a farce
Three insurance companies have publicly disclosed cyberattacks in the past week. Scattered Spider, an amorphous band of cybercriminals, has been actively targeting the sector.
The post Aflac duped by social-engineering attack, marking another hit on insurance industry appeared first on CyberScoop.
Continue reading Aflac duped by social-engineering attack, marking another hit on insurance industry