Collaborate Disseminate
The US House of Representatives this week passed two cybersecurity bills: the Energy Cybersecurity University Leadership Act and the RANSOMWARE Act.
RANSOMWARE is an acronym for ‘Reporting Attacks from Nations Selected for Oversight and Monitoring Web … Continue reading House Passes Cybersecurity Bills Focusing on Energy Sector, Information Sharing
Microsoft has warned of an increase in malicious Internet Information Services (IIS) extensions used as backdoors on Exchange servers.
read more Continue reading Microsoft: Attackers Increasingly Using IIS Extensions as Server Backdoors
Malware hunters at Microsoft have caught an Austrian hack-for-hire company exploiting zero-day flaws in Windows and Adobe software products in “limited and targeted attacks” against European and Central American computer users.
read more Continue reading Microsoft Catches Austrian Company Exploiting Windows, Adobe Zero-Days
A study commissioned by IBM Security says the global average cost of a data breach reached an all-time high of $4.35 million and warned that the absence of zero trust principles at studied organizations are pushing those costs even higher.
read more Continue reading IBM Security: Cost of Data Breach Hitting All-Time Highs
Security researchers have observed an uptick in new Luca Stealer samples after the malware’s source code was made public.
Coded in Rust, the malware was initially observed in early July 2022, when its developer posted the source code on cybercrime foru… Continue reading Dozens of ‘Luca Stealer’ Malware Samples Emerge After Source Code Made Public
A security audit by the European Parliament has unearthed attempts to plant high-end surveillance software on the phone of a Greek lawmaker and there are fresh reports linking the hack attempt to a known North Macedonia spyware vendor.
read more Continue reading European Lawmaker Targeted With Cytrox Predator Surveillance Spyware
Security researchers with Kaspersky have analyzed a UEFI firmware rootkit that appears to target specific motherboard models from Gigabyte and Asus.
read more Continue reading Chinese UEFI Rootkit Found on Gigabyte and Asus Motherboards
The team behind the open source PrestaShop ecommerce platform has issued a public advisory to warn of zero day SQL injection attacks hitting merchant servers and planting code capable of stealing customer payment information.
read more Continue reading PrestaShop Confirms Zero Day Attacks Hitting eCommerce Servers
Network security appliance vendor SonicWall late Thursday shipped urgent patches for a critical flaw in its Global Management System (GMS) software, warning that the issue exposes businesses to remote hacker attacks.
read more Continue reading SonicWall Warns of Critical GMS SQL Injection Vulnerability
Security researchers at Intezer are documenting the discovery of a powerful piece of Linux malware that can stay undetected and has the ability to install rootkits.
read more Continue reading Intezer Documents Powerful ‘Lightning Framework’ Linux Malware