Dive Brief: Nearly 800 instances of Forta’s GoAnywhere MFT remain unpatched and potentially exposed to a critical vulnerability disclosed earlier this week, according to Shadowserver data published Friday. While many instances of the file-transfer service remain unpatched, less than 30 are vulnerable to exploits due to admin panel exposure on the public internet, Shadowserver said. […]
3rd Party Risk Management , Breach Notification , Cybercrime Concentra Health Services Joins List of Those Affected in Transcriber’s Data Breach Marianne Kolbasuk McGee (HealthInfoSec) • January 26, 2024 Concentra Health Services is one of the latest healthcare providers to report a large breach resulting from the hack on medical transcriber Perry Johnson […]
Jan 27, 2024NewsroomMalware / Software Update Mexican financial institutions are under the radar of a new spear-phishing campaign that delivers a modified version of an open-source remote access trojan called AllaKore RAT. The BlackBerry Research and Intelligence Team attributed the activity to an unknown Latin American-based financially motivated threat actor. The campaign has been active […]
Cyberattackers have installed the Pegasus spyware on the phones of multiple journalists in the African country of Togo. According to Reporters Without Borders, the spyware was used by Togo’s government until 2021, and there is evidence of at least 23 spyware intrusions — between Feb. 1 and July 10 in that year — on one […]