Cybersecurity
Category Added in a WPeMatico Campaign
While the federal government knows how to throw money at a problem, it needs to do a better job at helping civilian agencies understand the complex risks when it comes to protecting itself against cyberattacks, according to a six-month study by the Center for Strategic and International Studies. The report examined the Cybersecurity and Infrastructure […]
The popularity of Brazil’s PIX instant payment system has made it a lucrative target for threat actors looking to generate illicit profits using a new malware called GoPIX. Kaspersky, which has been tracking the active campaign since December 2022, said the attacks are pulled off using malicious ads that are served when potential victims search […]
The Akira ransomware gang breached BHI Energy’s network through a stolen VPN credential and stole a significant amount of data, including the personal information of employees.
While 93% of companies recognize the risks associated with using generative AI inside the enterprise, only 9% say they’re prepared to manage the threat, according to Riskonnect. The research reveals a profound AI risk management gap: To date, only 17% of risk and compliance leaders have formally trained or briefed their organizations on the risks […]
Citrix pushed for customers to upgrade to the latest versions of NetScaler ADC and NetScaler Gateway on Monday, after learning about incidents consistent with session hijacking and credible reports of targeted attacks against a critical vulnerability. Citrix released patches to address the vulnerability, CVE-2023-4966, on Oct. 10, and warned that exploitation of the flaw can […]
Security researchers have discovered what they believe may be a government attempt to covertly wiretap an instant messaging service in Germany — an attempt that was blown because the potential intercepting authorities failed to reissue a TLS certificate. The suspected man-in-the-middle attack was identified when the administrator of jabber.ru, the largest Russian XMPP service, received […]
Ransomware activity reached an all-time high in September, with 514 attacks recorded. The previous record was in March 2023, but this new surge was led by different threat groups. LockBit 3.0, LostTrust, and BlackCat were the top attackers.
Adlumin, a Washington DC startup working on technology to boost security for mid-market firms, has banked $70 million in new financing. The substantial Series B funding round was led by SYN Ventures, a Florida-based venture capital firm placing early-stage bets in cybersecurity startups. The company said First In Ventures, Washington Harbour Partners, and BankTech Ventures […]
Oct 25, 2023NewsroomExploit / Vulnerability Virtualization services provider VMware has alerted customers to the existence of a proof-of-concept (PoC) exploit for a recently patched security flaw in Aria Operations for Logs. Tracked as CVE-2023-34051 (CVSS score: 8.1), the high-severity vulnerability relates to a case of authentication bypass that could lead to remote code execution. “An […]