Collaborate Disseminate
A CISA alert is flagging a critical default credentials issue that affects 100+ types of devices found in hospitals, from MRI machines to surgical imaging. Continue reading Critical, Unpatched Bugs Open GE Radiological Devices to Remote Code Execution
VMware has issued a full patch and revised the severity level of the NSA-reported vulnerability to “important.” Continue reading VMware Rolls a Fix for Formerly Critical Zero-Day Bug
The feds have seen ongoing cyberattacks on think-tanks (bent on espionage, malware delivery and more), using phishing and VPN exploits as primary attack vectors. Continue reading Think-Tanks Under Attack by Foreign APTs, CISA Warns
Online shoppers are blissfully unaware of credit card skimming threats and malicious shopping apps as they head into this year’s Black Friday and Cyber Monday holiday shopping events. Continue reading ThreatList: Cyber Monday Looms – But Shoppers Oblivious to Top Retail Threats
The attack featured a unique, multistage malware and a likely PulseSecure VPN exploit. Continue reading Feds Hit with Successful Cyberattack, Data Stolen
An authentication-bypass vulnerability allows attackers to access network assets without credentials when SAML is enabled on certain firewalls and enterprise VPNs. Continue reading CISA: Nation-State Attackers Likely to Exploit Palo Alto Networks Bug
The emails are well-crafted and extremely convincing. Continue reading IRS Impersonation Attacks Spread Malware Nationwide