Vulnerability ManagementVeeam patches 5 critical vulnerabilities, including unauthenticated RCE flawLaura FrenchSeptember 6, 2024An advisory for 18 patched flaws includes one that could enable “full system takeover,” researchers said.
Vulnerability ManagementApache patches OFBiz bypass vulnerabilitySteve ZurierSeptember 6, 2024Security pros say this flaw could be integrated into a botnet, so teams should patch immediately.
AI/MLRussian ‘Doppelganger’ influence campaign exposed through internal documents, seized accountsLaura FrenchSeptember 5, 2024The U.S. Department of Justice revealed how Russia-backed actors used fake news sites, social media and AI to spread propaganda.
IdentityScammers turn tables on hackers seeking OnlyFans account takeoverShaun NicholsSeptember 5, 2024A crop of hackers were caught trying to steal money from the oldest profession in society.
RansomwarePlanned Parenthood confirms Montana cyberattack claimed by RansomHubSteve ZurierSeptember 5, 2024RansomHub threatens to leak 93 gigabytes of data by if its demands are not met.
RansomwareCicada3301 ransomware: How similar is it to ALPHV/BlackCat?Laura FrenchSeptember 4, 2024The new Rust-based ransomware-as-a-service has spurred rumors of an ALPHV/BlackCat comeback.
Network SecurityColorado tops list of cyberattacks per capita in the USShaun NicholsSeptember 4, 2024Colorado experienced the highest rate of cyberattacks since 2017, reporting 10,776 annual victims from 2020.
IdentityYubiKey 5 devices open to cloning via side-channel attacks Steve ZurierSeptember 4, 2024Security pros say while side-channel attacks are difficult to pull off, the sheer volume of YubiKey devices in use makes the potential threat a real concern.
RansomwareCity of Columbus sues researcher for sharing leaked ransomware dataLaura FrenchSeptember 3, 2024A judge approved a restraining order to prevent the researcher from downloading and disseminating the data.
Governance, Risk and ComplianceFTC calls out security camera vendor Verkada over data exposureShaun NicholsSeptember 3, 2024Verkada acknowledges it spammed its own customers with junk email and allowed them to be exposed to unwanted emails.
Why China views the present situation as a vulnerable moment for the WestMorgan Wright September 6, 2024