Latest articles by Rene Millman
Chinese hackers target ManageEngine password manager
News Around nine organizations in the technology, defense, health care, energy, and education industries hit in new campaign
Sitecore XP RCE flaw is being actively exploited, ACSC warns
News The vulnerability was fixed last month but hackers are now moving against patching laggards
US Treasury sanctions crypto exchange Chatex over ransomware ties
News The move comes after the US government sanctioned the Suex exchange in September
What is Maze ransomware?
In-depth This Windows ransomware has targeted many organisations worldwide
Proofpoint impersonator steal Microsoft, Google logins in phishing campaign
News Clever hackers dodged Microsoft security by pretending to be a cyber security firm
Critical vulnerabilities in Philips EMR system could risk patient data
News CISA has warned that hackers could extract info from medical databases or mount DoS attacks
US sanctions Israeli NSO Group for selling spyware
News COSEINC and Positive Technologies were also blocked by the government
Vulnerability in Linux kernel could let hackers remotely take over systems
News Heap overflow attacks can exploit TIPC module in all common Linux distributions
Magecart card skimmer avoids detection by evading virtual machines
News Browser script detects VMs used by researchers
Fake Steam phishing baits victims with free Discord Nitro
News Victims end up on a fake page where their credentials are stolen
Mekotio trojan continues to spread despite its operators’ arrests
News Hackers have used it in 100 more attacks since arrests
161% surge in mobile phishing pushes energy industry to its limits
News Following Colonial Pipeline, crooks get a taste for energy companies
Mitre reveals ten worst hardware security weaknesses in 2021
News The list aims to highlight common hardware flaws to help eliminate them from product development cycles
Red Hat launches Enterprise Linux 9 beta
News Changes will require less work from admins and IT Ops
Office 365 phishing campaign used stolen Kaspersky Amazon SES token to fool victims
News Credentials stolen from users after legitimate-looking email arrives in inboxes
“Trojan Source” hides flaws in source code from humans
News Organizations urged to take action to combat the new threat that could result in SolarWinds-style attacks
Hackers could use new Wslink malware in highly targeted cyber attacks
News Malware acts as a server, but its origins baffle boffins
Critical macOS vulnerability found to bypass SIP restrictions
News The flaw lies in how the OS handles software packages and post-installation scripts
Ransomware gang claims to have hacked the NRA
News “Grief" gang says it has already leaked some of its stolen data to the dark web
FBI raids Chinese POS business following cyber attack claims
News The business has been accused of selling terminals that acted as malware droppers and C2 servers
BillQuick billing software exploit lets hackers deploy ransomware
News The now-patched critical zero-day vulnerability also leaked sensitive data from the time and billing platform
BlackMatter ransomware victims reclaim data using secret decryptor
News Emsisoft discovered a critical flaw in the ransomware that allowed them to help victims recover their files
Microsoft touts new cyber security help for nonprofits
News Free training, security assessments, and access to tools given to strengthen charities’ security posture
