Avast developed and released a decryptor for the DoNex ransomware family that allows victims to recover their files for free. Avast researchers identified a cryptographic flaw in the DoNex ransomware and its predecessors that allowed them to develop a decryptor.…
Tag: EN
Update: Network Segmentation Hobbled Midnight Blizzard’s Attack on TeamViewer
The company revealed that their corporate IT network, production environment, and TeamViewer connectivity platform are segmented to prevent unauthorized access. Immediate remediation measures were effective in blocking suspicious activity. This article has been indexed from Cyware News – Latest Cyber…
Egnyte Copilot accelerates enterprise content collaboration
Egnyte launched Egnyte Copilot, its AI-driven assistant designed to accelerate and transform enterprise content collaboration. Egnyte Copilot enables Egnyte customers to start engaging in AI-powered conversations with their own private and trusted data through a simple, turnkey solution while keeping…
Ticketmaster Extortion Continues, Threat Actor Claims New Ticket Leak
Tickets to Foo Fighters, Aerosmith, Pink and Usher gigs have been leaked by a threat actor trying to extort Ticketmaster This article has been indexed from www.infosecurity-magazine.com Read the original article: Ticketmaster Extortion Continues, Threat Actor Claims New Ticket Leak
Critical Infrastructure Providers Seek Guardrails on Scope, Timeline for CIRCIA Rules
Critical infrastructure providers are urging federal officials for more flexibility in reporting cyber incidents within the first 72 hours under the Cyber Incident Reporting for Critical Infrastructure Act. This article has been indexed from Cyware News – Latest Cyber News…
Increase in the Exploitation of Microsoft SmartScreen Vulnerability
Cyble Research and Intelligence Labs (CRIL) has identified an increase in the exploitation of the Microsoft SmartScreen vulnerability (CVE-2024-21412) through an active campaign targeting regions like Spain, the US, and Australia. This article has been indexed from Cyware News –…
Align strengthens defense against double-extortion ransomware tactics
Align adds a new exfiltration prevention feature to its Align Guardian Managed Detection and Response offering, powered by Adlumin. This innovation is designed to detect and stop attackers from exfiltrating data, providing a defense against modern ransomware tactics that employ…
Ghostscript Rendering Platform Vulnerability Let Attackers Execute Remote Code
A critical vulnerability has been discovered in the Ghostscript rendering platform, identified as CVE-2024-29510. This flaw, a format string vulnerability, affects versions up to 10.03.0 and allows attackers to bypass the -dSAFER sandbox, leading to remote code execution (RCE). This…
Outpost24 appoints Ido Erlichman as CEO
Outpost24 announced the appointment of Ido Erlichman as its new CEO, effective immediately. With over 20 years of experience in cyber security, technology and finance, Erlichman will bring a wealth of knowledge and a proven track record of leadership and…
As Cyber Command Evolves, Its Novel Malware Alert System Fades Away
The shift away from public disclosure on Twitter is part of an evolution in how the CNMF communicates cyber threat information. The command now focuses on working closely with industry partners to share information effectively and efficiently. This article has…
Microsoft China staff can’t log on with an Android, so Redmond buys them iThings
Google’s absence creates software distribution issues not even mighty Microsoft can handle Microsoft China will provide staff with Apple devices so they can log on to the software giant’s systems.… This article has been indexed from The Register – Security…
Cybersecurity Agencies Warn of China-linked APT40’s Rapid Exploit Adaptation
Cybersecurity agencies from Australia, Canada, Germany, Japan, New Zealand, South Korea, the U.K., and the U.S. have released a joint advisory about a China-linked cyber espionage group called APT40, warning about its ability to co-opt exploits for newly disclosed security…
Turla Hackers Weaponizing LNK-Files To Deploy Fileless Malware
Hackers often weaponize LNK files because they can carry malware into systems undetected by anyone. LNK files are shortcuts that, when opened, launch a malicious payload (like scripts or executables). LNK files are widely used in Windows environments and can…
HCL Domino Vulnerability Let Attackers obtain Sensitive information
A critical security vulnerability has been discovered in HCL Domino, a popular enterprise server software, that could potentially expose sensitive configuration information to remote unauthenticated attackers. This vulnerability, CVE-2024-23562, has raised concerns among cybersecurity experts and enterprises relying on HCL…
Unleashing the Power of Next-Gen Agents for Robust Cloud-Native Security
While there’s no one-size-fits-all option for securing the cloud, next-generation agents thrive in these fast-moving environments and serve as the critical component of any cloud security strategy. The post Unleashing the Power of Next-Gen Agents for Robust Cloud-Native Security appeared…
Scammers double-scam victims by offering to help recover from scams
Scum keep databases of the people they’ve already skimmed Australia’s Competition and Consumer Commission has warned that scammers are targeting scam victims with fake offers to help them recover from scams.… This article has been indexed from The Register –…
China’s APT40 gang is ready to attack vulns within hours or days of public release
Lax patching and vulnerable small biz kit make life easy for Beijing’s secret-stealers Law enforcement agencies from eight nations, led by Australia, have issued an advisory that details the tradecraft used by China-aligned threat actor APT40 – aka Kryptonite Panda,…
Navigating Authentication Challenges: A Closer Look at Contemporary CIAM
The need for robust authentication mechanisms has become paramount in the ever-evolving landscape of digital security. The post Navigating Authentication Challenges: A Closer Look at Contemporary CIAM appeared first on Security Boulevard. This article has been indexed from Security Boulevard…
Minimize Data Breaches with Planning, Transparency and Technology
Data breaches are growing more prevalent and sophisticated, and companies must make every effort to minimize the impact of an attack. The post Minimize Data Breaches with Planning, Transparency and Technology appeared first on Security Boulevard. This article has been…
Trojanized jQuery Packages Found on npm, GitHub, and jsDelivr Code Repositories
Unknown threat actors have been found propagating trojanized versions of jQuery on npm, GitHub, and jsDelivr in what appears to be an instance of a “complex and persistent” supply chain attack. “This attack stands out due to the high variability…