In a blog post on Monday, Mintlify blamed its March 1 incident on a vulnerability in its own systems but said 91 of its customers had their GitHub tokens compromised as a result.

The signees agree to establish “robust guardrails and procedures” around spyware, prevent the export of technology that will be used for malicious cyber activity, share information on spyware proliferation and work to raise awareness globally.

In filings with regulators in Maine and California, the company said it discovered a cybersecurity incident on December 30 that prompted an investigation. Law enforcement and other governmental agencies were notified of the cyberattack.

This investment round, led by Riverwood Capital with contributions from Silver Lake Waterman and Advent, bolsters BigID’s efforts in data hygiene and securing sensitive data access.

Wiper attacks have been a go-to for Russian attacks on Ukrainian government and private-sector targets in the past two years, and the latest version of the software used to target Viasat shows how Russian hacking groups are evolving their tools.

The wide geographic distribution of vulnerable SSL VPNs highlights the extensive attack surface for the critical vulnerability, with Asia having the highest number of exposed appliances.

In an increasingly fragmented geopolitical landscape, influenced by the war in Ukraine and rising tensions in the Middle East, the aerospace sector’s designation as critical infrastructure has become a double-edged sword.

An announcement published late last week on the firm’s news portal discloses a major cybersecurity incident that has compromised systems and data, including sensitive information of customers.

The NCSC released guidance for operational technology (OT) organizations on migrating their SCADA systems to the cloud. This guidance aims to help organizations assess the benefits and risks of cloud-hosted SCADA to make informed decisions.

This campaign is noteworthy as it uses an unorthodox HTML smuggling technique where the malicious payload is embedded in a separate JSON file hosted on an external website.