CISA: Apple Releases Security Updates for iOS and macOS
Apple Releases Security Updates for iOS and macOS Apple has released security updates to address a vulnerability in multiple products....
CISA: Mozilla Releases Security Updates for Multiple Products
Mozilla Releases Security Updates for Multiple Products Mozilla has released security updates to address a vulnerability affecting Firefox, Firefox ESR,...
CISA: CISA Releases its Open Source Software Security Roadmap
CISA Releases its Open Source Software Security Roadmap Today, CISA released an Open Source Software Security Roadmap to lay out—in...
CISA: CISA Releases Continuous Diagnostics and Mitigation Program: Identity, Credential, and Access Management (ICAM) Reference Architecture
CISA Releases Continuous Diagnostics and Mitigation Program: Identity, Credential, and Access Management (ICAM) Reference Architecture Today, CISA released the Continuous...
CISA: CISA Adds Eight Known Exploited Vulnerabilities to Catalog
CISA Adds Eight Known Exploited Vulnerabilities to Catalog CISA has added eight new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on September 14, 2023. These...
CISA: Fortinet Releases Security Updates for Multiple Products
Fortinet Releases Security Updates for Multiple Products Fortinet has released security updates to address vulnerabilities (CVE-2023-29183 and CVE-2023-34984) affecting FortiOS,...
CISA: CISA Adds One Known Vulnerability to Catalog
CISA Adds One Known Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on...
Google extends security update support for Chromebooks to 10 years
Google has announced the Auto Update Expiration (AUE) date will be extended from 5 years to 10 for all Chromebooks, guaranteeing...
Retool blames breach on Google Authenticator MFA cloud sync feature
Software company Retool says the accounts of 27 cloud customers were compromised following a targeted and multi-stage social engineering attack....
ORBCOMM ransomware attack causes trucking fleet management outage
9/15/23 update added below. Trucking and fleet management solutions provider ORBCOMM has confirmed that a ransomware attack is behind recent service...
The Week in Ransomware – September 15th 2023 – Russian Roulette
This week’s big news is the extortion attacks on the Caesars and MGM Las Vegas casino chains, with one having...
Wake-Up Call as 3AM Ransomware Variant Is Discovered
Security researchers have discovered a new ransomware variant which was deployed after LockBit was blocked on a victim organization’s network.Symantec’s...
Cloud Vulnerabilities Surge 200% in a Year
IBM tracked 632 new cloud-related vulnerabilities (CVEs) between June 2022 and June 2023, a 194% increase from the previous year,...
Caesars Entertainment Reveals Major Ransomware Breach
Yet another Nevadan casino and hotel chain giant has been compromised by ransomware threat actors, after Caesars Entertainment reported a...
Manchester Police Officers’ Data Breached in Third-Party Attack
A ransomware attack on a third-party supplier to Greater Manchester Police (GMP) has exposed personal data of more UK police...
Lazarus Group Blamed For $53m Heist at CoinEx
An infamous threat group connected to the North Korean state has been blamed for a major attack on cryptocurrency exchange...
Elon Musk in Hot Water With FTC Over Twitter Privacy Issues
Elon Musk is in the crosshairs of US federal regulators over his handling of privacy and security issues since he...
Iranian Threat Group Hits Thousands With Password Spray Campaign
An Iranian state-backed APT group carried out a “wave” of cyber-espionage attacks against thousands of global targets over a six-month...
Pirated Software Likely Cause of Airbus Breach
A major data breach at Airbus revealed earlier this week stemmed from a RedLine info-stealer likely hidden in a pirated...
China’s Malicious Cyber Activity Informing War Preparations, Pentagon Says
China’s malicious cyber activity informs its preparations for a potential military conflict with the US, a new report from the...
Cloud to Blame for Almost all Security Vulnerabilities
Four out of five (80.3%) security vulnerabilities observed in organizations across all sectors come from a cloud environment, Palo Alto...
US-CERT Vulnerability Summary for the Week of September 4, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infocanonical_ltd. -- snapd_for_linuxUsing the TIOCLINUX ioctl request, a malicious snap could inject...
Z9 – PowerShell Script Analyzer
Abstract This tools detects the artifact of the PowerShell based malware from the eventlog of PowerShell logging. Online Demo Install...
