In 2022 there was a significant increase in API-related CVEs, growing +78% from H1 to H2. Although growth has stabilized over the past two quarters, the research team at Wallarm expects an increase in 2023.

Named “Xenomorph 3rd generation” by the Hadoken Security Group, the threat actor behind the operation, the updated version comes with new features that allow it to perform financial fraud in a seamless manner.

The UK-based digital identity company, led by CEO Robin Tombs, intends to use the funds to develop its technology that protects customers’ identities and personal data online.

In recent weeks, SentinelLabs observed novel Linux versions of IceFire ransomware being deployed within the enterprise network intrusions of several media and entertainment sector organizations worldwide.

“Customer Proprietary Network Information from some wireless accounts was exposed, such as the number of lines on an account or wireless rate plan,” AT&T told BleepingComputer.

An interior ministry spokesperson on Tuesday confirmed that the German government was carrying out a general review of telecoms tech suppliers, but said that this was not directed at specific manufacturers.

An unauthenticated attacker can exploit the vulnerability to obtain the credentials stored in the VeeamVBR configuration database and use them to access backup infrastructure hosts.

The Series B round was led by Energy Impact Partners and Paladin Capital Group, along with participation from KPN Ventures, Lapa Capital Partners, Lanx Capital, and Cisco Investments.

ScrubCrypt obfuscates and encrypts applications and makes them able to dodge security programs. It has an updated version, and the seller’s webpage guarantees that it can bypass Windows Defender and provide anti-debug and some bypass functions.

Michael Pezullo, currently serving as the secretary of the Department of Home Affairs, said the Russian Federation hosted “the greatest density of cybercriminals, particularly those with ransomware,” in the world.