The notorious Russian cyber-espionage group Turla is hacking other hackers, hijacking the Pakistani threat actor Storm-0156’s infrastructure to launch their own covert attacks on already compromised networks. […] Go to Source Author: Bill Toulas
Category Archives: Security
Japan’s CERT is warning that hackers are exploiting zero-day vulnerabilities in I-O Data router devices to modify device settings, execute commands, or even turn off the firewall. […] Go to Source Author: Bill Toulas
Updated NIST guidelines reject outdated password security practices in favor of more effective protections. Learn from Specops Software about 6 takeaways from NIST’s new guidance that help create strong password policies. […] Go to Source Author: Sponsored by Specops Software
Stoli Group’s U.S. companies have filed for bankruptcy following an August ransomware attack and Russian authorities seizing the company’s remaining distilleries in the country. […] Go to Source Author: Sergiu Gatlan
Cloudflare’s ‘pages.dev’ and ‘workers.dev’ domains, used for deploying web pages and facilitating serverless computing, are being increasingly abused by cybercriminals for phishing and other malicious activities. […] Go to Source Author: Bill Toulas
CISA released guidance today to help network defenders harden their systems against attacks coordinated by the Salt Typhoon Chinese threat group that breached multiple major global telecommunications providers earlier this year. […] Go to Source Author: Sergiu Gatlan
A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as possible. […] Go to Source Author: Bill Toulas
Veeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE) discovered during internal testing. […] Go to Source Author: Sergiu Gatlan
Germany has taken down the largest online cybercrime marketplace in the country, named “Crimenetwork,” and arrested its administrator for facilitating the sale of drugs, stolen data, and illegal services. […] Go to Source Author: Bill Toulas
Today, the FTC banned data brokers Mobilewalla and Gravy Analytics from harvesting and selling Americans’ location tracking data linked to sensitive locations, like churches, healthcare facilities, military installations, and schools. […] Go to Source Author: Sergiu Gatlan