The Cyber Express
Banco Santander Confirms Data Breach, Assures Customers’ Transactions Remain Secure
Santander, one of the largest banks in the eurozone, confirmed that an unauthorized party had gained access to a database
The Cyber Express
Santander, one of the largest banks in the eurozone, confirmed that an unauthorized party had gained access to a database
The Cyber Express
Santander, one of the largest banks in the eurozone, confirmed that an unauthorized party had gained access to a database
Cyber Security News
The University System of Georgia (USG) announced that the confidential information of approximately 800,000 students, faculty, and staff was exposed in the recent MOVEit data breach.
SecurityWeek
University System of Georgia says Social Security numbers and bank account numbers were compromised in the May 2023 MOVEit hack.
CyberNews
The University System of Georgia, a US government agency, has suffered a data incident via the infamous MOVEit Transfer hack.
Security Magazine
The most commonly exploited vulnerabilities.
The Cyber Express
The CL0P ransomware group has listed 3 additional victims on its leak site. The mentioned victims include: McKinley Packing, Pilot
DarkReading
MOVEit drove a big chunk of the increase, but social engineering and failure to patch led to a doubling of data breaches since 2023, said Verizon Business.
SC Magazine
Vulnerability exploits, pure extortion and internal risks are on the rise, while AI threats fall short.
Trend Micro
In this blog entry, we discuss Trend Micro's contributions to an Interpol-coordinated operation to help Brazilian and Spanish law enforcement agencies analyze malware samples of the Grandoreiro banking trojan.
The Hacker News
Major cybercrime groups are under attack by police. But are these takedowns effective? Some groups vanish, others bounce back in DAYS.
The Cyber Express
The Cyber Army Russia has claimed a cyberattack on Consol Energy, a prominent American energy company headquartered in Cecil Township,
CyberNews
Researchers observe a flood of crude and amateurish ransomware. But it’s cheap, difficult to trace, and comes in many flavors.
The Hacker News
Akira Ransomware group has already extorted roughly $42 million from over 250 victims globally. They are now targeting both Windows and Linux systems.
The Hacker News
FIN7, a notorious cybercrime group, is targeting the U.S. automotive industry with spear-phishing attacks.
Cyber Security News
Microsoft SQL Server is one of the most popular databases deployed globally and an irresistible target for ransomware Attacks.
SC Magazine
Several impersonators have used LockBit’s branding and leaked builder in their attacks.
The Hacker News
CL0P ransomware emerges as a major player in the cybercrime world! From "bed bug" beginnings to a global threat, this group's aggressive tactics are r
The Hacker News
Q1 2024 had 22% less ransomware attacks than Q4 2023. Why is that and is it a trend that will continue?
The Hacker News
CISA adds 3 security flaws to its Known Exploited Vulnerabilities catalog, citing active exploitation evidence
The Hacker News
Multiple threat actors exploit security flaws in JetBrains TeamCity to deploy ransomware, crypto miners, Cobalt Strike beacons, and Spark RAT
SecurityWeek
A recently patched Aiohttp vulnerability tracked as CVE-2024-23334 is being targeted by threat actors, including by a ransomware group.
Security Affairs
Fortra addressed a critical remote code execution vulnerability impacting its FileCatalyst file transfer product.
The Hacker News
Fortra patches critical flaw in FileCatalyst transfer tool. Vulnerability allows remote code execution via directory traversal.
CyberNews
The LockBit ransom gang is back up since global police allege it decimated the group’s infrastructure and claimed the Ernest Health hospital network as its latest victim.
SecurityWeek
Use of AI to help vulnerability prioritization approaches suggests an exciting future for AI-assisted methods to vulnerability triaging.
SecurityWeek
The ransomware threat will continue to grow and expand. It is the quintessential business plan for cybercriminals.
SC Magazine
Thousands of ScreenConnect servers are at risk of takeover from a CVSS 10-scored vulnerability.
Trend Micro
Trend and other private entities recently contributed to INTERPOL’s Operation Synergia, a global operation that successfully took down over 1,000 C&C servers and identified suspects related to phishing, banking malware, and ransomware activity.
DarkReading
The now-disrupted LockBit gang outpaced its competitors in volume in 2023, as ransom amounts spiked 20% year-over-year.
Bleeping Computer
The cybercrime ecosystem has created a supply chain of stolen accounts and breached networks that are used to fuel ransomware attacks and data breaches. Learn more from Flare about how this supply chain has led to an explosion of cybercrime.
SecurityWeek
Supply chain security: A successful attack against a supplier can lead to multiple opportunities against the supplier’s downstream customers
The Cyber Express
Bronstein & Carmona, a law firm based in the US, is under suspicion of falling prey to the notorious CL0P
SecurityWeek
A malware tactic dubbed ‘hunter-killer’ is growing and may become the standard approach for advanced attacks.
The Hacker News
U.S. Department of State is offering up to $10 million for information on Hive ransomware operators.
Cyber Security News
A new report by Chainalysis found that ransomware payments reached a staggering $1 billion in 2023, highlighting the growing threat posed by cybercrime.
CyberNews
2023 marked a major comeback for cyber gangs deploying ransomware, who received a record-breaking sum of at least $1.1 billion in ransom payments.
SC Magazine
The MOVEit hack and growth of RaaS helped drive record-breaking ransomware revenue, analysts say.
PCMag
Payments to ransomware attackers surge in 2023, doubling in value from the previous year, according to data from Chainalysis.
SecurityWeek
Schneider Electric’s Sustainability Business division disrupted as a result of a ransomware attack and data breach.
DarkReading
PoC exploit code for flaw is publicly available, heightening breach risks for users of the managed file transfer technology.
The Cyber Express
The CL0P ransomware group has claimed responsibility for compromising India-based S&A Law Offices, a leading firm offering litigation services, commercial
The Hacker News
GoAnywhere users, listen up! Critical bug (CVE-2024-0204) lets anyone become admin. Update to 7.4.1 immediately.
SecurityWeek
By ensuring that all sensitive data is effectively encrypted, organizations render any exfiltrated data useless to attackers.
CyberNews
This research article aims to provide a comprehensive overview of ransomware group activity throughout the year 2023.
The Hacker News
2023 witnessed a shocking 55.5% increase in ransomware victims! Over 4,368 cases reported globally. Stay ahead in the cybersecurity game.
CyberNews
The largest zoo in Canada, Toronto Zoo, was hit by a ransomware attack on Friday, January 5th, affecting systems and some information about visitors, members, and donors.
The Cyber Express
A threat actor known as IntelBroker has claimed responsibility for a major data breach targeting the United States Department of
CyberNews
Barrick Gold data leak exposed thousands of Social Security numbers.
The Cyber Express
The year 2023 witnessed a surge in high-profile cyberattacks, leaving organizations shattered and the world in chaos. This digital turmoil
CyberNews
External actors are responsible for the vast majority (83%) of breaches.
Cyber Security News
Some of the vulnerabilities were added to the CISA’s Known Exploited Vulnerabilities catalog marking them as extremely important to patch.
Infosecurity News
The Qualys report also showed over 7000 vulnerabilities had proof-of-concept exploit code
SecurityWeek
Delta Dental of California says over 6.9 million individuals were impacted by a data breach caused by the MOVEit hack.
The Cyber Express
The year 2023 stands as a pivotal moment in the ongoing evolution of cyber threats. Witnessing the emergence of new
HACKRead
Since its emergence in May 2023, the MOVEit vulnerability has been exploited by the Russian-linked Cl0p ransomware gang, revealing their involvement in the breach.
CyberNews
Dental insurance company Delta Dental has become yet another victim of the MOVEit Transfer zero-day flaw exploitation campaign.
DarkReading
Threat actors fully embrace the spin machine: rebranding, speaking with the media, writing detailed FAQs, and more, in an effort to make headlines.
CyberNews
Rhysida claims to have stolen “exclusive, unique, and impressive data” from Insomniac, but there are no details as to the amount or contents.
SC Magazine
More than 200 sites of care and 30 hospitals in Ardent Health Services' system were affected by the ransomware attack, which was discovered Thanksgiving morning.
The Cyber Wire
Why criminals find healthcare organizations attractive targets.
Security Affairs
Healthcare services provider Welltok disclosed a data breach that impacted nearly 8.5 million patients in the U.S.
Security Affairs
American retailer and distributor of automotive parts and accessories AutoZone discloses a data breach after a MOVEit attack
SecurityWeek
Car parts giant AutoZone says nearly 185,000 individuals were impacted by a data breach caused by the MOVEit hack.
The Record
The Clop ransomware gang claimed to have attacked the organization in January. Eleven months later, the New York City Bar Association has finally acknowledged the incident.
CyberNews
US automotive parts giant says up to nearly 185,000 people may have been affected by cyberattack earlier this year.
CyberNews
Welltok MOVEit Trasnfer breach impacted millions of individuals.
CyberNews
MESVision fell victim in MOVEit Trasnfer hack, exposing hundreds of thousands of victims.
Cyber Security News
SysAid disclosed a zero-day which was affecting on-premises SysAid servers. The vulnerability was found to be a path traversal vulnerability.
CyberNews
The State of Maine data breach exposed over a million of its residents.
CyberNews
Top global law firm Allen & Overy (A&O) said some of its systems have been impacted due to a “data incident” claimed by the LockBit ransomware group.
The Hacker News
Microsoft exposes Lace Tempest's latest move: exploiting a zero-day flaw in SysAid IT support software.
DataBreaches
Helga Labus reports: A critical zero-day vulnerability (CVE-2023-47246) in the SysAid IT support and management software solution is being exploited by Lace...
Cyber Security News
A "zero-day vulnerability" is a security flaw or weakness in a software application, operating system, or hardware device unknown to the vendor or the public.
SecurityWeek
Progress Software confirms the SEC has launched its own investigation into costly ransomware zero-days in the MOVEit file transfer software.
The Record
The company told the Securities and Exchange Commission that it is facing 58 class action lawsuits, as well as inquiries from a variety of agencies, in relation to the MOVEit cyberattacks.
SecurityWeek
Sony shares information on the impact of two recent unrelated hacker attacks carried out by known ransomware groups.
Cyber Security News
Sony Interactive Entertainment (SIE) discloses a cybersecurity breach caused by the exploitation of a zero-day vulnerability in MOVEit.
DataBreaches
Progress Software WS_FTP Critical Vulnerabilities Executive Summary Progress Software, the maker of the MOVEit file transfer software which was widely...
CSO
Researchers from Group-IB believe it's likely the group is an independent affiliate working for multiple ransomware-as-a-service operations
DarkReading
In the wake of Cl0p's MOVEit rampage, Progress Software is sending file-transfer customers scrambling again — this time to patch a critical bug that is easily exploitable with a specially crafted HTTPS POST request.
SecurityWeek
New RSA encryption attack, Meta’s AI privacy safeguards, and ShinyHunters hackers’ guilty plea in the United States
The Hacker News
Progress Software releases hotfixes for critical CVE-2023-40044 and 7 other vulnerabilities in WS_FTP Server
Cyber Security News
A new Ransomware-as-a-service (RaaS) provider has been discovered by researchers, which notably uses multiple ransomware families and is found to have links with several ransomware attacks since July 2022.
DarkReading
Ransomware-as-a-service affiliate ShadowSyndicate is unusual for the size of its malicious infrastructure and the fact that it's distributing seven different ransomware strains.
Infosecurity News
The investigation was conducted by Group-IB, Bridewell and threat researcher Michael Koczwara
The Hacker News
Cyber experts uncover a new threat: ShadowSyndicate. Explore their connections to ransomware and the latest findings from cybersecurity experts.
DarkReading
The newly emerged ransomware actively targets both Windows and Linux systems with a double-extortion approach.
SecurityWeek
QakBot, SocGholish, and Raspberry Robin are the three most popular malware loaders, accounting for 80% of the observed incidents.
The Hacker News
The leak of LockBit 3.0 ransomware builder has led to the emergence of various new cyber threats: Bl00dy, Buhti, and NATIONAL HAZARD AGENCY.
SecurityWeek
Nearly 1,000 organizations and 60 million individuals are impacted by the MOVEit hack, and the Cl0p ransomware gang is leaking stolen data.
DarkReading
It's not going anywhere: Easy-to-exploit bugs like MOVEit, leaks of stolen data, and rapid-fire escalation are keeping ransomware attacks as painful as ever.
SecurityWeek
Cybersecurity companies have released a dozen ransomware reports in recent weeks and most of them show a surge in attacks.
DarkReading
Dubbed Carderbee, the group used legitimate software and Microsoft-signed malware to spread the Korplug/PlugX backdoor to various Asian targets.
CyberScoop
The unknown and unattributed hackers compromised legitimate software in apparent focused attack, researchers said.
SecurityWeek
Rapid7 says criminal ransomware gangs could easily be able to purchase and use bevy of zero-day exploits for vulnerable enterprise software.
Infosecurity News
A Rapid7 report finds there have been at least 1500 ransomware victims in the first half of 2023
Bleeping Computer
Ransomware attacks continue to grow both in sophistication and quantity. Learn more from Flare about ransomware operation's increasing shift to triple extortion.
The Hacker News
Citrix ShareFile under attack! Learn about ongoing exploitation of CVE-2023-24489 and how to defend your systems.
Security Affairs
The Colorado Department of Health Care Policy & Financing (HCPF) disclose a data breach after MOVEit attack on IBM. The Colorado Department of Health Care Policy & Financing (HCPF) disclosed a data breach that impacted more than four million individuals. The incident is the result of a MOVEit attack on IBM, threat actors accessed the […]
Loading more articles....