Cybersecurity
Category Added in a WPeMatico Campaign
Jan 05, 2024NewsroomCyber Attack / Data Breach Ukrainian cybersecurity authorities have disclosed that the Russian state-sponsored threat actor known as Sandworm was inside telecom operator Kyivstar’s systems at least since May 2023. The development was first reported by Reuters. The incident, described as a “powerful hacker attack,” first came to light last month, knocking out […]
Dive Brief: Mimecast, a specialist in email and collaborative workspace security, reached an agreement to buy Elevate Security, a human risk management solutions provider. Mimecast said the deal will help protect digital work environments by providing additional insight into human behavior. The company did not disclose the financial terms of the deal. The companies have […]
A San Francisco-based federal judge said he believes Apple was likely negligent in its design and oversight of the AirTags tracking product, signaling he is leaning toward denying the company’s motion to dismiss a class action lawsuit brought by stalking victims who charge the device empowered their abusers. U.S. District Judge Vince Chhabria said his […]
Jan 05, 2024NewsroomVulnerability / Network Security Ivanti has released security updates to address a critical flaw impacting its Endpoint Manager (EPM) solution that, if successfully exploited, could result in remote code execution (RCE) on susceptible servers. Tracked as CVE-2023-39336, the vulnerability has been rated 9.6 out of 10 on the CVSS scoring system. The shortcoming […]
The breach impacted 17 healthcare service providers and state-level health systems, including Corewell Health, HonorHealth, and the State of Tennessee’s Division of TennCare.
SentinelOne has agreed to acquire PingSafe. The acquisition of PingSafe’s cloud native application protection platform (CNAPP), when combined with SentinelOne’s cloud workload security and cloud data security capabilities, is expected to provide companies with a fully integrated platform that drives better coverage, hygiene and automation across their entire cloud footprint. The planned integration of PingSafe’s […]
A threat actor named “xc7d2f4” is allegedly selling remote command injection vulnerability for Cisco ASA. The threat actor has claimed that this vulnerability exists on all 55XX series of the Cisco Adaptive Security Appliance (ASA). The Cyber Express has reached out to Cisco to confirm the details of the alleged vulnerability exposure, but an official […]
The company chose not to pay the ransom demanded by the hackers, aligning with the FBI’s recommendation, but the specific details of the attack and the stolen data remain undisclosed.
Jan 04, 2024NewsroomCryptocurrency Miner / Malware Three new malicious packages have been discovered in the Python Package Index (PyPI) open-source repository with capabilities to deploy a cryptocurrency miner on affected Linux devices. The three harmful packages, named modularseven, driftme, and catme, attracted a total of 431 downloads over the past month before they were taken […]