Microsoft Outlook Vulnerability Could Be 2023s It Bug
Snowballing PoC exploits for CVE-2023-23397 and a massive attack surface means almost business user could be a victim.
LowBudget Winter Vivern APT Awakens After 2Year Hibernation
The underreported APT has returned to focus after attacks promoting Russian and Belarusian government interests and going after targets with humor, zest, and scrappiness.
Meta Proposes Revamped Approach to Online Kill Chain Frameworks
A more holistic model beyond MITRE et al is needed to help defenders better identify and understand commonalities in different online threat campaigns, the Facebook parent company says.
The Ethics of Network and Security Monitoring
The chances of getting hacked are no longer low. Companies need to rethink their data collection and monitoring strategies to protect employee privacy and corporate integrity.
BianLian Ransomware Pivots From Encryption to Pure DataTheft Extortion
The ransomware group has already claimed 116 victim organizations so far on its site, and it continues to mature as a thriving cybercriminal business, researchers said.
5 Ways to Fight School Ransomware Attacks
The challenges are steep, but school districts can fight back with planning.
Cyberattackers Continue Assault Against Fortinet Devices
Patched earlier this month, a code-execution vulnerability is the latest FortiOS weakness to be exploited by attackers, who see the devices as well-placed targets for initial access operations.
Analysts Spot a Wave of SVBRelated Cyber Fraud Striking the Business Sector
Over the weekend, cybercriminals laid the groundwork for Silicon Valley Bank-related fraud attacks that theyre now starting to cash in on. Businesses are the targets and, sometimes, the enablers.
Telerik Bug Exploited to Steal Federal Agency Data CISA Warns
An unpatched Microsoft Web server allowed multiple cybersecurity threat groups to steal data from a federal civilian executive branch.
GoatRAT Android Banking Trojan Targets Mobile Automated Payment System
The new malware was discovered targeting three banks in Brazil.