Ivanti has revealed that a critical security flaw impacting Cloud Service Appliance (CSA) has come under active exploitation in the wild. The new vulnerability, assigned the CVE identifier CVE-2024-8963, carries… Read More »Critical Ivanti Cloud Appliance Vulnerability Exploited in Active Cyberattacks
Until just a couple of years ago, only a handful of IAM pros knew what service accounts are. In the last years, these silent Non-Human-Identities (NHI) accounts have become one… Read More »Wherever There’s Ransomware, There’s Service Account Compromise. Are You Protected?
Threat actors have been observed targeting the construction sector by infiltrating the FOUNDATION Accounting Software, according to new findings from Huntress. “Attackers have been observed brute-forcing the software at scale,… Read More »Hackers Exploit Default Credentials in FOUNDATION Software to Breach Construction Firms
The cryptojacking operation known as TeamTNT has likely resurfaced as part of a new campaign targeting Virtual Private Server (VPS) infrastructures based on the CentOS operating system. “The initial access… Read More »New TeamTNT Cryptojacking Campaign Targets CentOS Servers with Rootkit
A previously undocumented malware called SambaSpy is exclusively targeting users in Italy via a phishing campaign orchestrated by a suspected Brazilian Portuguese-speaking threat actor. “Threat actors usually try to cast… Read More »New Brazilian-Linked SambaSpy Malware Targets Italian Users via Phishing Emails
Cybersecurity in healthcare has never been more urgent. As the most vulnerable industry and largest target for cybercriminals, healthcare is facing an increasing wave of cyberattacks. When a hospital’s systems… Read More »Healthcare’s Diagnosis is Critical: The Cure is Cybersecurity Hygiene
Microsoft has revealed that a financially motivated threat actor has been observed using a ransomware strain called INC for the first time to target the healthcare sector in the U.S.… Read More »Microsoft Warns of New INC Ransomware Targeting U.S. Healthcare Sector
GitLab has released patches to address a critical flaw impacting Community Edition (CE) and Enterprise Edition (EE) that could result in an authentication bypass. The vulnerability is rooted in the… Read More »GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions
Cybersecurity researchers have uncovered a never-before-seen botnet comprising an army of small office/home office (SOHO) and IoT devices that are likely operated by a Chinese nation-state threat actor called Flax… Read More »New “Raptor Train” IoT Botnet Compromises Over 200,000 Devices Worldwide
A Chinese national has been indicted in the U.S. on charges of conducting a “multi-year” spear-phishing campaign to obtain unauthorized access to computer software and source code created by the… Read More »Chinese Engineer Charged in U.S. for Years-Long Cyber Espionage Targeting NASA and Military