Overview Ransomware remains a significant threat, with notable attacks such as Akira targeting Lush, Medusa disrupting Kansas City's public transport, and Schneider Electric falling victim to Cactus, indicating vulnerabilities across various sectors. A decline in ransomware payments suggests growing resistance due to better cybersecurity awareness, amidst the rise of new gangs like Albabat, Kasseika, and … Continue reading 30th January 2024 →

Cybercrime Medusa ransomware attack hit Kansas City Area Transportation Authority https://securityaffairs.com/158233/cyber-crime/kansas-city-area-transportation-authority-ransomware-attack.html Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours https://allinfosecnews.com/item/buzzing-on-christmas-eve-trigona-ransomware-in-3-hours-2024-01-29--1/ Vulnerability and Exploits Coca: Improving and Explaining Graph Neural Network-Based Vulnerability Detection Systems. (arXiv:2401.14886v1 [cs.CR]) https://allinfosecnews.com/item/coca-improving-and-explaining-graph-neural-network-based-vulnerability-detection-systems-arxiv240114886v1-cscr-2024-01-29/ Multiple PoC exploits released for Jenkins flaw CVE-2024-23897 https://securityaffairs.com/158251/hacking/cve-2024-23897-poc-exploits.html Exploits released for critical Jenkins RCE flaw, patch now … Continue reading 29th January 2024 →

Overview In the realm of ransomware, the Akira attack disrupted Swedish services, exposing the vulnerability of critical infrastructure. Veolia North America fell prey to ransomware, revealing the broad spectrum of potential targets. The ever-evolving tactics of ransomware, as seen in the BianLian strain, highlight the adaptability of cybercriminals. Kasseika ransomware's use of BYOVD attacks illustrates … Continue reading 25th January 2024 →

Overview Recent reports highlight the escalating threat landscape. British intelligence issues a stark warning, anticipating a surge in ransomware facilitated by AI. To counteract this, the cryptocurrency-based strategy CryptoGuard is being explored. Ransomware attacks have already impacted AerCap and loanDepot, compromising millions of records. Subway and Veolia North America, a major water services provider, also … Continue reading 24th January 2024 →

Overview Today's threat highlights include following: Cybercrime-RaaS (Ransomware as a service) Suspected Akira ransomware attack against Tietoevry disrupts Sweden https://www.scmagazine.com/brief/suspected-akira-ransomware-attack-against-tietoevry-disrupts-sweden  Massachusetts hospital claimed to be targeted by Money Message ransomware https://www.scmagazine.com/brief/massachusetts-hospital-claimed-to-be-targeted-by-money-message-ransomware  Newly emergent 3AM ransomware operation's ties examined https://www.scmagazine.com/brief/newly-emergent-3am-ransomware-operations-ties-examined  Australia sanctions Russian citizen Aleksandr Ermakov over 2022 Medibank cyber-attack https://www.theguardian.com/australia-news/2024/jan/23/medibank-cyber-attack-update-australia-sanctions-russian-aleksandr-gennadievich-ermakov  Mortgage lender loanDepot says "sensitive … Continue reading 23rd January 2024 →

Overview Today's threat highlights include, the LockBit ransomware group has claimed responsibility for an attack on the popular sandwich chain, Subway. Meanwhile, a Tietoevry ransomware assault has led to widespread outages affecting Swedish businesses and municipalities. Shifting to vulnerability management, Progress Software has acted decisively by patching a critical OpenEdge vulnerability. In the realm of … Continue reading 22nd January 2024 →

Overview Today's threat highlights include, Ransomware exploits TeamViewer, while these attacks are emotionally taxing for security professionals, with one reporting suicidal feelings. A zero-day vulnerability in Citrix NetScaler prompts urgent patching recommended by CISA. Concurrently, a vulnerability in FileZilla on Ubuntu surfaces, and CISA adds another known exploited vulnerability to its catalog. Exploitation widens with … Continue reading 19th January 2024 →

Overview Today's threat highlights include, a Taiwanese semiconductor company, Foxsemicon, reels from a ransomware attack, mirroring a Spanish municipality's resolve against a similar demand. GitHub's credential rotation and Google Chrome's emergency patch spotlight critical vulnerabilities, while Vicarius's $30 million funding boost underlines the escalating need for AI-powered vulnerability remediation. The FBI and CISA raise alarms … Continue reading 18th January 2024 →

Overview British Library makes progress in recovery, Singing River ransomware hits 250,000, and Calvià faces an $11 million ransom. Bosch BCC100 Thermostat at risk, Opera MyFlaw threatens Windows/macOS, Chrome's zero-day alert, and Cisco Unity Connection's critical vulnerability. Ivanti sees a surge in VPN targeting (1,700 devices), Google fixes an exploited Chrome zero-day, Citrix warns of … Continue reading 17th January 2024 →