Retool Falls Victim to SMS-Based Phishing Attack Affecting 27 Cloud Clients
Software development company Retool has disclosed that the accounts of 27 of its cloud customers were compromised following a targeted...
News
Think Your MFA and PAM Solutions Protect You? Think Again
When you roll out a security product, you assume it will fulfill its purpose. Unfortunately, however, this often turns out...
Microsoft AI Researchers Accidentally Expose 38 Terabytes of Confidential Data
Microsoft on Monday said it took steps to correct a glaring security gaffe that led to the exposure of 38...
New AMBERSQUID Cryptojacking Operation Targets Uncommon AWS Services
A novel cloud-native cryptojacking operation has set its eyes on uncommon Amazon Web Services (AWS) offerings such as AWS Amplify,...
Live Webinar: Overcoming Generative AI Data Leakage Risks
As the adoption of generative AI tools, like ChatGPT, continues to surge, so does the risk of data exposure. According...
Inside the Code of a New XWorm Variant
XWorm is a relatively new representative of the remote access trojan cohort that has already earned its spot among the...
Earth Lusca’s New SprySOCKS Linux Backdoor Targets Government Entities
The China-linked threat actor known as Earth Lusca has been observed targeting government entities using a never-before-seen Linux backdoor called...
Transparent Tribe Uses Fake YouTube Android Apps to Spread CapraRAT Malware
The suspected Pakistan-linked threat actor known as Transparent Tribe is using malicious Android apps mimicking YouTube to distribute the CapraRAT...
Nearly 12,000 Juniper Firewalls Found Vulnerable to Recently Disclosed RCE Vulnerability
New research has found that close to 12,000 internet-exposed Juniper firewall devices are vulnerable to a recently disclosed remote code...
Another $40m Dispersed to Western Union Fraud Victims
A further multimillion-dollar distribution of funds from Western Union to victims of fraud perpetrated via its payment network has begun,...
TikTok Fined $368m For Child Data Privacy Offenses
TikTok has been fined hundreds of millions of dollars after Ireland’s data protection regulator found it infringed the GDPR with...
Illegal Betting Ring Used Satellite Tech to Get Scoop on Results
Police are celebrating after busting a suspected illegal betting and match-fixing ring which used advanced technology to find out the...
Fraudsters Steal Over $1m in Three Weeks Through ‘Pig Butchering’ Crypto Scam
Malicious actors have stolen more than $1m in a ‘pig butchering’ cryptocurrency scam in just three months, researchers from Sophos...
US-CERT Vulnerability Summary for the Week of September 11, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infowibu -- codemeter_runtime A heap buffer overflow vulnerability in Wibu CodeMeter Runtime...
The Week in Ransomware – September 15th 2023 – Russian Roulette
This week’s big news is the extortion attacks on the Caesars and MGM Las Vegas casino chains, with one having...
ORBCOMM ransomware attack causes trucking fleet management outage
9/15/23 update added below. Trucking and fleet management solutions provider ORBCOMM has confirmed that a ransomware attack is behind recent service...
Retool blames breach on Google Authenticator MFA cloud sync feature
Software company Retool says the accounts of 27 cloud customers were compromised following a targeted and multi-stage social engineering attack....
Google extends security update support for Chromebooks to 10 years
Google has announced the Auto Update Expiration (AUE) date will be extended from 5 years to 10 for all Chromebooks, guaranteeing...
Cloud Vulnerabilities Surge 200% in a Year
IBM tracked 632 new cloud-related vulnerabilities (CVEs) between June 2022 and June 2023, a 194% increase from the previous year,...
Wake-Up Call as 3AM Ransomware Variant Is Discovered
Security researchers have discovered a new ransomware variant which was deployed after LockBit was blocked on a victim organization’s network.Symantec’s...
Elon Musk in Hot Water With FTC Over Twitter Privacy Issues
Elon Musk is in the crosshairs of US federal regulators over his handling of privacy and security issues since he...
Lazarus Group Blamed For $53m Heist at CoinEx
An infamous threat group connected to the North Korean state has been blamed for a major attack on cryptocurrency exchange...
Manchester Police Officers’ Data Breached in Third-Party Attack
A ransomware attack on a third-party supplier to Greater Manchester Police (GMP) has exposed personal data of more UK police...
Caesars Entertainment Reveals Major Ransomware Breach
Yet another Nevadan casino and hotel chain giant has been compromised by ransomware threat actors, after Caesars Entertainment reported a...
