Hackers are actively exploiting a critical vulnerability in Apache Struts that allows for remote code execution, potentially leading to unauthorized access, data theft, and network disruption.
According to SafeGuard Cyber, the use of popular messaging apps like WhatsApp in business settings has led to a significant increase in security incidents, with 42% of flagged messages occurring in WhatsApp.
Harry Coker Jr., a Navy veteran and former executive director of the National Security Agency, will lead the Office of the National Cyber Director and be responsible for implementing the national cybersecurity strategy.
Pandora hVNC is a widely used remote access trojan (RAT) that allows cybercriminals to gain covert control over victims’ computers, enabling activities like data theft and unauthorized access to sensitive systems.
Affiliates associated with NoEscape claimed that the ransomware operators pulled an exit scam, stealing millions of dollars in ransom payments and shutting off the operation’s web panels and data leak sites.
The NCUA has been in contact with the affected financial institutions and helped them get their systems back online. The attack, which was caused by ransomware, affected credit unions using cloud services provided by Ongoing Operations.
The funding round was led by U.S. Venture Partners (USVP), and included strategic investor Dmitri Alperovitch, co-founder and former CTO of CrowdStrike, as well as existing investors Venrock, CyberArk, F2 Capital, and Pico Venture Partners.
The OLVX marketplace operates on the clear web and has gained popularity in recent months. It offers various products and services, including phish kits, remote desktop connections, cPanel credentials, webshells, and stolen data.
The effects of a November ransomware attack against Oceanside, California’s Tri-City Medical Center were contained more than two weeks ago, but now those behind the cyber incident are publishing stolen data on the dark web.
An independent review found that the breach was a result of multiple factors and highlighted the organization’s lack of a data protection strategy. It also noted that the PSNI had not fully implemented the 2018 Data Protection Act.