Vulnerability Management‘MadMxShell’ leverages Google Ads to deploy malware via Windows backdoorSecurity pros say using Windows backdoor in a malvertising campaign could expose companies to other malware attacks.
RansomwareAtlassian Confluence Linux instances targeted with Cerber ransomware Attackers exploited a critical vulnerability to create a new administrator account.
RansomwareIt’ll be back: Attackers still abusing Terminator tool and variantsFirst released in May 2023, an EDR killer – and the vulnerable Zemana drivers it leverages – are still of interest to threat actors, along with variants and ported versions
RansomwareRansomHub says Change Healthcare data now up for saleThe ransomware group posted screenshots of alleged insurer and patient information Monday.
RansomwareOmni Hotels confirms data compromise in apparent ransomware attack Security pros say the hospitality sector represents a new attack vector for the Daixin Team ransomware gang.
RansomwareConnectWise ScreenConnect attacks deliver malwareMultiple attacks exploit vulnerabilities in an IT remote access tool to deliver a variety of different payloads into business environments.
RansomwareCompromised backups send ransomware recovery costs soaringOrganizations must protect their backups as if their business survivability depended on it.
RansomwareLockBit copycat DarkVault spurs rebranding rumorSeveral impersonators have used LockBit’s branding and leaked builder in their attacks.
RansomwareLockBit: Lessons learned on winning the war on cybercrimeMaking sense of the ransomware-group takedown -- what it means for ransomware and law enforcement
IdentitySisense customers told to reset credentials amid supply chain attack fearsWhile details of the breach are limited, CISA sends alert after security researchers discover compromise.
Threat predictions for 2024: Chained AI and CaaS operations give attackers more ‘easy’ buttons than everSponsored by FortinetNovember 22, 2023
Watch: FBI encourages reporting of cyber incidents, backs legislationStephen WeigandDecember 23, 2021
What security agencies, regulators, and businesses get wrong about cybersecurityStu SjouwermanApril 9, 2024