The number of ransomware attacks targeting universities has doubled over the past year and the cost of ransomware demands is going up as information security teams struggle to fight off cyberattacks.
The attack chain begins with the exploit of remote code execution (RCE) vulnerabilities impacting software including Hadoop Yarn and Elasticsearch, such as CVE-2015-1427 and CVE-2019-9082.
A joint cybersecurity advisory from the U.S. government is warning against AppleJeus malware, the Lazarus group’s new development, that masquerades as crypto trading software.
Gamers worldwide are being directly targeted with cyberattacks, mostly through credential stuffing and phishing, to pilfer account credentials and card data.
Kaseya has acquired RocketCyber with the intention of further developing its complete security suite. RocketCyber will continue to operate as an independent business within Kaseya, led by Banzhof.
Once triggered, MINEBRIDGE buries itself into the vulnerable TeamViewer, enabling attackers to take a wide array of remote follow-on actions such as spying on users or deploying additional malware.
Cyber fraudsters may increasingly be moving away from major corporate scams to target large numbers of consumers for very small amounts, according to a new think tank report.
A new attack framework aims to infer a user’s keystrokes at the opposite end of a video conference call by leveraging the video feed to correlate observable body movements to the text being typed.
Tracked as CVE-2021-23827, the bug is described as an issue which “allows an attacker to obtain potentially sensitive media (such as private pictures) in the cache and uploadtemps directories.”
The Accellion system was widely used to share and store files by organizations around the world, including Transport for NSW, the government entity said on Tuesday afternoon.