The Week In Ransomware January 12th 2024 Targeting Homeowners Data
Mortgage lenders and related companies are becoming popular targets of ransomware gangs, with four companies in this sector recently attacked....
cybersecurity
Cisa Critical Microsoft Sharepoint Bug Now Actively Exploited
CISA warns that attackers are now exploiting a critical Microsoft SharePoint privilege escalation vulnerability that can be chained with another...
Juniper Warns Of Critical Rce Bug In Its Firewalls And Switches
Juniper Networks has released security updates to fix a critical pre-auth remote code execution (RCE) vulnerability in its SRX Series...
Bitwarden Adds Passkey Support To Log Into Web Password Vaults
The open-source Bitwarden password manager has announced that all users can now log into their web vaults using a passkey...
Halara Probes Breach After Hacker Leaks Data For 950 000 People
Popular athleisure clothing brand Halara is investigating a data breach after the alleged data of almost 950,000 customers was leaked...
Framework Discloses Data Breach After Accountant Gets Phished
Framework Computer disclosed a data breach exposing the personal information of an undisclosed number of customers after Keating Consulting Group,...
New Balada Injector Campaign Infects 6 700 WordPress Sites
A little over 6,700 WordPress websites using a vulnerable version of the Popup Builder plugin have been infected with the...
Microsoft Shares Script To Update Windows 10 Winre With Bitlocker Fixes
Microsoft has released a PowerShell script to automate updating the Windows Recovery Environment (WinRE) partition in order to fix CVE-2024-20666,...
Over 150k WordPress Sites At Takeover Risk Via Vulnerable Plugin
Two vulnerabilities impacting the POST SMTP Mailer WordPress plugin, an email delivery tool used by 300,000 websites, could help attackers take...
Finland Warns Of Akira Ransomware Wiping Nas And Tape Backup Devices
The Finish National Cybersecurity Center (NCSC-FI) is informing of increased Akira ransomware activity in December, targeting companies in the country and wiping backups....
Fidelity National Financial Hackers Stole Data Of 13 Million People
Fidelity National Financial (FNF) has confirmed that a November cyberattack (claimed by the BlackCat ransomware gang) has exposed the data...
Shinyhunters Member Gets 3 Years In Prison For Breaching 60 Firms
The U.S. District Court in Seattle sentenced ShinyHunters member Sebastien Raoult to three years in prison and ordered a restitution...
Pro Ukraine Hackers Breach Russian Isp In Revenge For Kyivstar Attack
A pro-Ukraine hacktivist group named ‘Blackjack’ has claimed a cyberattack against Russian provider of internet services M9com as a direct...
Fake 401k Year End Statements Used To Steal Corporate Credentials
Threat actors are using communication about personal pension accounts (the 401(k) plans in the U.S.), salary adjustments, and performance reports...
Windows 10 Kb5034441 Security Update Fails With 0x80070643 Errors
Windows 10 users worldwide report problems installing Microsoft's January Patch Tuesday updates, getting 0x80070643 errors when attempting to install the...
Mandiants X Account Hacked By Crypto Drainer As A Service Gang
Cybersecurity firm and Google subsidiary Mandiant says its Twitter/X account was hijacked last week by a Drainer-as-a-Service (DaaS) gang in what it...
Ivanti Warns Of Connect Secure Zero Days Exploited In Attacks
Ivanti has disclosed two Connect Secure (ICS) and Policy Secure zero-days exploited in the wild that can let remote attackers...
Cisco Says Critical Unity Connection Bug Lets Attackers Get Root
Cisco has patched a critical Unity Connection security flaw that can let unauthenticated attackers remotely gain root privileges on unpatched...
Decryptor For Babuk Ransomware Variant Released After Hacker Arrested
Researchers from Cisco Talos working with the Dutch police obtained a decryption tool for the Tortilla variant of Babuk ransomware and shared intelligence...
Cisa Warns Agencies Of Fourth Flaw Used In Triangulation Spyware Attacks
The U.S. Cybersecurity and Infrastructure Security Agency has added to its to the Known Exploited Vulnerabilities catalog six vulnerabilities that...
China Claims It Cracked Apples Airdrop To Find Numbers Email Addresses
A Chinese state-backed research institute claims to have discovered how to decrypt device logs for Apple's AirDrop feature, allowing the...
Ransomware Victims Targeted By Fake Hack Back Offers
Some organizations victimized by the Royal and Akira ransomware gangs have been targeted by a threat actor posing as a...
Google Search Bug Shows Blank Page In Firefox For Android
Users of the Firefox browser for Android have been reporting that they are seeing a blank page when trying to load...
Nigerian Gets 10 Years For Laundering Millions Stolen From Elderly
Nigerian man Olugbenga Lawal (also known as Razak Aolugbengela) was sentenced on Monday to 10 years and one month in...
