https://www.scmagazine.com/topic/latest
SCM feed for Latest
2024-03-28T14:12:57+00:00
https://files.scmagazine.com/logo/scm-horizontal-white-with-resource.png
Copyright © 2024 CyberRisk Alliance, LLC All Rights Reserved
tag:www.scmagazine.com:post,709785
Google: Zero-day exploits increasingly target enterprise technologies
2024-03-28T10:00:16-04:00
Simon Hendery
https://www.scmagazine.com/contributor/simon-hendery
<p>An analysis found threat actors are increasingly targeting enterprise-specific technologies.</p>
2024-03-28T09:58:32-04:00
tag:www.scmagazine.com:post,709779
Escalating cyber threats require immediate adaptation
2024-03-28T09:36:06-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Significant increases have been observed in the prevalence of several cybersecurity threats during the past year, SiliconAngle reports.</p>
2024-03-28T09:36:00-04:00
tag:www.scmagazine.com:post,709776
Zero-day exploitation spikes
2024-03-28T10:00:32-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Threat actors actively exploited 97 zero-day vulnerabilities last year, which is more than 50% higher than in 2022 but lower than in 2021, reports BleepingComputer.</p>
2024-03-28T09:30:24-04:00
tag:www.scmagazine.com:post,709770
Covert extension installation possible with Microsoft Edge flaw
2024-03-28T09:24:14-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Potential cyberattacks facilitated by covertly installed browser extensions could have been deployed with the exploitation of an already addressed medium-severity privilege escalation vulnerability in Microsoft Edge, according to The Hacker News.</p>
2024-03-28T09:24:09-04:00
tag:www.scmagazine.com:post,709766
Advanced payouts to Change Healthcare attack-hit providers exceed $3.3B
2024-03-28T09:19:32-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>CNBC reports that UnitedHealth Group has already provided more than $3.3 billion in advanced payments to U.S. healthcare providers that experienced financial disruptions following the far-reaching ransomware attack against its payment processor subsidiary Change Healthcare last month attributed to the ALPHV/BlackCat ransomware operation.</p>
2024-03-28T09:19:26-04:00
tag:www.scmagazine.com:post,709762
Unsecured server exposes RentGo data
2024-03-28T09:12:57-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Major Turkish car rental service provider Rent Go had data from more than 161,000 customers exposed due to an unsecured Azure Blob Storage instance, reports Cybernews.</p>
2024-03-28T09:12:52-04:00
tag:www.scmagazine.com:post,709758
Cyberespionage campaign hits India
2024-03-28T09:09:36-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>India had several of its government agencies and energy industry organizations subjected to cyberespionage attacks delivering the HackBrowserData information-stealing malware as part of the new Operation FlightNight campaign identified earlier this month, according to The Record, a news site by cybersecurity firm Recorded Future.</p>
2024-03-28T09:09:31-04:00
tag:www.scmagazine.com:post,709754
NHS Scotland data leak warned by INC Ransom group
2024-03-28T09:08:51-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>BleepingComputer reports that Scotland's National Health Service has been threatened by the INC Ransom extortion operation to expose 3 TB of data stolen from an attack this month.</p>
2024-03-28T09:08:46-04:00
tag:www.scmagazine.com:post,709750
Agent Tesla distributed via fraudulent bank notifications
2024-03-28T08:55:35-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>Threat actors have launched a new phishing campaign using fraudulent bank payment notifications to facilitate the deployment of the Agent Tesla information-stealing and keylogging malware, The Hacker News reports.</p>
2024-03-28T08:55:30-04:00
tag:www.scmagazine.com:post,709748
New CISA cyber incident reporting draft unveiled
2024-03-28T08:50:20-04:00
SC Staff
https://www.scmagazine.com/contributor/sc-staff
<p>The Cybersecurity and Infrastructure Security Agency has unveiled a draft cyber incident disclosure rule created under the Cyber Incident Reporting for Critical Infrastructure Act that would mandate organizations part of the 16 designated critical infrastructure sectors to report ransomware incidents and payments within a 72-hour and 24-hour period, respectively, according to CyberScoop.</p>
2024-03-28T08:50:15-04:00