Sirattacker is one of the latest Chaos ransomware variants. It was first released in the middle of February 2023. ALC is a recently reported ransomware. It is known for a message aimed at “Russia and its counterpart” in its ransom note.
Two out of every five (40.6%) operational technology (OT) computers used in industrial settings have been affected by malware in 2022. The data comes from a report published earlier today by security researchers at Kaspersky.
A new phishing campaign targets organizations in Eastern European countries with the Remcos RAT malware with aid from an old Windows User Account Control bypass discovered over two years ago.
Clear communication is essential. Communication strategies differ before and after a cyber incident. The way a company approaches both is as important as incident mitigation itself.
The researchers informed DJI of the 16 detected vulnerabilities prior to releasing the information to the public. In the course of the responsible disclosure process, the manufacturer has fixed these issues.
A PoC exploit for CVE-2023-21716, a critical RCE vulnerability in Microsoft Word that can be exploited when the user previews a specially crafted RTF document, is now publicly available.
Personal information belonging to some 15,000 Denver Public Schools (DPS) employees was stolen in what the district is calling a “cybersecurity incident” that went on for a month.
As well as the $7.8m fine, BetterHelp will be banned from sharing any more consumer health data, including information on mental health issues, for the purposes of advertising, according to the terms of the order.
Sysdig discovered a sophisticated operation, named SCARLETEEL, targeting public-facing web apps running in a self-managed Kubernetes cluster hosted on AWS to steal proprietary data. Cybercriminals camouflage their campaigns as cryptojacking operations, however, their agenda is to steal sensitive data and credentials from targeted systems. Organizations and individuals are suggested to adopt extra measures, such as […]
Modesto confirmed that the February 3 breach of its Police Department’s digital network was a ransomware attack and said that a number of people’s personal information, including Social Security and driver’s license numbers, may have been accessed.