Collaborate Disseminate
Mozilla over the weekend issued an emergency security update for Firefox to address two zero-day vulnerabilities that have been exploited in attacks.
read more
Continue reading Emergency Firefox Update Patches Two Actively Exploited Zero-Day Vulnerabilities
Kaspersky said it saw only a small increase in the percentage of industrial control system (ICS) computers targeted in 2021 compared to the previous year, but there was a more significant rise for certain types of threats.
read more
Continue reading Slight Increase in Attacks on ICS Computers in 2021: Report
CISA Warns of 60 Exploited Vulnerabilities Affecting Cisco, Microsoft Products
read more
Continue reading CISA Says Recent Cisco Router Vulnerabilities Exploited in Attacks
Staff at European government organizations have been receiving malicious emails that appear to be coming from email accounts belonging to members of the Ukrainian military.
read more
Continue reading Hacked Ukrainian Military Emails Used in Attacks on European Governments
A hacker who claims to be Ukrainian has leaked the source code of the notorious Conti ransomware after the cybercrime gang expressed its support for Russia.
read more
Threat actors specializing in distributed denial-of-service (DDoS) attacks have started abusing network middleboxes for reflection and amplification, Akamai warns.
read more
Continue reading DDoS Attacks Abuse Network Middleboxes for Reflection, Amplification
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday announced that it has expanded its Known Exploited Vulnerabilities Catalog with a zero-day recently identified in the Zimbra email platform.
read more
Continue reading CISA Urges Organizations to Patch Actively Exploited Zimbra XSS Vulnerability
A second, custom backdoor was observed being deployed in attacks on four defense contractors if the primary backdoor was removed, security researchers with Palo Alto Networks’ Unit 42 division report.
read more
Continue reading Stealthy ‘SockDetour’ Backdoor Used in Attacks on U.S. Defense Contractors
Governmental agencies in the United States and the United Kingdom warn of cyberespionage operations that the Iranian state-sponsored threat actor MuddyWater has been running against both public and private sector organizations worldwide.
read more
… Continue reading US, UK Warn of Iranian Cyberattacks on Government, Commercial Networks
Ransomware was used as a decoy in some of the recent data-wiping cyberattacks against organizations in Ukraine, Symantec reports.
read more
Continue reading Ransomware Used as Decoy in Destructive Cyberattacks on Ukraine