[ad_1] Software supply chain attacks conducted by North Korean hackers have skyrocketed over the past few years, according to UK and South Korean government agencies. The MagicLine4NX and 3CX compromises, which both started in March 2023, are two of the most recent examples. To raise... Continue reading
Return to previous page
Page 58
[ad_1] Several government agencies and cybersecurity organizations have raised the alarm in response to multiple threat actor groups exploiting Citrix Bleed, a vulnerability affecting Citrix’s NetScaler web application delivery control (ADC) and NetScaler Gateway appliances. As part of the #StopRansomware coalition, an advisory was issued... Continue reading
[ad_1] The space sector is facing a growing threat from nation-state cyberattacks, making it critical for organizations to know who has built every component that makes up a spacecraft. A single compromise of one supplier could result in a disastrous incident, according to Neil Sherwin-Peddie,... Continue reading
[ad_1] A substantial 26% of cyber incidents in businesses over the last two years have been found to be the result of intentional security protocol violations by employees. This figure closely rivals the 20% attributed to external hacking attempts. The findings come from Kaspersky’s latest... Continue reading
[ad_1] A critical vulnerability in Apache ActiveMQ, identified as CVE-2023-46604, has been exposed, revealing an active exploitation scenario by the notorious Kinsing malware. According to an advisory published by Trend Micro on Monday, the discovery underscores the implications for Linux systems, as the vulnerability allows... Continue reading
[ad_1] Microsoft has launched another bug bounty program, this time with the goal of making its Microsoft Defender-branded products and services more resilient to attack. The Microsoft Defender Bounty Program will offer ethical hackers between $500 and $20,000 for “significant vulnerabilities that have a direct... Continue reading
[ad_1] The chief operating officer (COO) of a US network security firm has pleaded guilty to compromising the IT systems of two hospitals in order to generate business for his company. Securolytics executive, Vikas Singla, admitted hacking Gwinnett Medical Center (GMC) hospitals in Duluth and... Continue reading
[ad_1] Successors to the QakBot malware have emerged despite the disruption to QakBot infrastructure by an international law enforcement operation led by the FBI in August 2023. Cofense, a phishing detection solution provider, has observed new phishing campaigns that use the same infection tactics QakBot... Continue reading
[ad_1] Security researchers have detected a Russian-language Word document carrying a malicious macro in the ongoing Konni campaign. Despite its September 2023 creation date, FortiGuard Labs’ internal telemetry revealed continued activity on the campaign’s command-and-control (C2) server. This long-running campaign utilizes a remote access Trojan (RAT)... Continue reading
[ad_1] The personally identifiable information (PII) of millions of online shoppers could be at risk as a result of significant security gaps in e-commerce web applications, according to new research by CyCognito. The study has been published ahead of Black Friday and Cyber Monday 2023,... Continue reading