Mozi malware botnet goes dark after mysterious use of kill-switch
Mozi malware botnet activity faded away in August after a mysterious unknown party sent a payload on September 27, 2023,...
New CVSS 4.0 vulnerability severity rating standard released
The Forum of Incident Response and Security Teams (FIRST) has officially released CVSS v4.0, the next generation of its Common...
3,000 Apache ActiveMQ servers vulnerable to RCE attacks exposed online
Over three thousand internet-exposed Apache ActiveMQ servers are vulnerable to a recently disclosed critical remote code execution (RCE) vulnerability. Apache...
Hackers use Citrix Bleed flaw in attacks on govt networks worldwide
Threat actors are leveraging the 'Citrix Bleed' vulnerability, tracked as CVE-2023-4966, to target government, technical, and legal organizations in the...
Toronto Public Library outages caused by Black Basta ransomware attack
The Toronto Public Library is experiencing ongoing technical outages due to a Black Basta ransomware attack. The Toronto Public Library...
F5 BIG-IP Remote Code Execution Vulnerability
A vulnerability was identified in F5 BIG-IP. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted...
Half of Execs Request Security Bypass Over Past Year
Nearly half (49%) of C-level executives have requested to bypass one or more security measures in the past year, highlighting...
Arid Viper Campaign Targets Arabic-Speaking Users
Cybersecurity experts at Cisco Talos have exposed the latest operations of the espionage-driven Arid Viper advanced persistent threat (APT) group....
Scarred Manticore Targets Middle East With Advanced Malware
An ongoing Iranian espionage campaign led by Scarred Manticore, an actor associated with the Ministry of Intelligence and Security (MOIS),...
Regulator Reveals Large Disparity in APP Fraud Reimbursement
Customers reporting authorized push payment (APP) scams to their banks are being exposed to “inconsistent outcomes” in terms of reimbursement,...
Forty Countries Agree Not to Pay Cybercrime Ransoms
Dozens of US allies have signed an agreement never to pay digital extortionists, in a sign of the growing impact...
British Library Still Reeling After Major Cyber Incident
The UK’s national library is still suffering what it describes as a “major technology outage” due to a “cyber incident”...
NHS Trust Reprimanded After Delays to Thousands of Referrals
UK GDPR regulator the Information Commissioner’s Office (ICO) has reprimanded an NHS trust after an IT issue led to many...
Palo Alto Reveals New Features in Russian APT Turla’s Kazuar Backdoor
The latest version of the Kazuar backdoor could be more sophisticated than previously imagined, according to Palo Alto Networks.The Kazuar...
28 Countries Sign Bletchley Declaration on Responsible Development of AI
The UK government called it a “landmark” decision for the future of artificial intelligence (AI). The Bletchley Declaration, an international...
North Korean Hackers Target macOS Crypto Engineers With Kandykorn
North Korean hackers suspected to be associated with the Lazarus Group have been observed targeting blockchain engineers involved in cryptocurrency...
Mysterious Kill Switch Shuts Down Mozi IoT Botnet
The Mozi botnet, known for exploiting vulnerabilities in a large number of Internet of Things (IoT) devices, has been experienced...
Data Encrypted in 75% of Ransomware Attacks on Healthcare Organizations
Data was successfully encrypted in 75% of ransomware attacks on healthcare organizations in 2023, according to new research from Sophos.This...
CISA: VMware Releases Security Advisory for vCenter Server
VMware Releases Security Advisory for vCenter Server VMware released a security advisory for vulnerabilities (CVE-2023-34048, CVE-2023-34056) affecting the VMware vCenter...
CISA: Apple Releases Security Advisories for Multiple Products
Apple Releases Security Advisories for Multiple Products Apple has released security updates to address vulnerabilities in multiple products. A cyber...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Announces Launch of Logging Made Easy
CISA Announces Launch of Logging Made Easy Today, CISA announces the launch of a new version of Logging Made Easy (LME)(link...
CISA: CISA Releases Nine Industrial Control Systems Advisories
CISA Releases Nine Industrial Control Systems Advisories CISA released nine Industrial Control Systems (ICS) advisories on October 26, 2023. These...
CISA: VMware Releases Advisory for VMware Tools Vulnerabilities
VMware Releases Advisory for VMware Tools Vulnerabilities VMware released a security advisory addressing multiple vulnerabilities (CVE-2023-34057, CVE-2023-34058) in VMware Tools....
