Recent Security News
-
Websites Hacked via Vulnerability in Bricks Builder WordPress Plugin
February 20, 2024 at 09:03AM Attackers are leveraging a recently patched vulnerability in the Bricks Builder plugin for WordPress to execute arbitrary PHP code on affected websites, warns Patchstack. Tracked as CVE-2024-25600, this remote code execution flaw can be exploited without authentication. Exploitation attempts have already been observed, with attackers deploying malware to disable security…
-
Cactus Ransomware Group Confirms Hacking Schneider Electric
February 20, 2024 at 09:03AM The Cactus ransomware gang claimed responsibility for the cyberattack on Schneider Electric. The attack only impacted the Sustainability Business division, and certain data was exfiltrated. The gang has threatened to disclose stolen data unless a ransom is paid. Schneider Electric’s clients’ impact is unclear. Cactus has been actively exploiting vulnerabilities…
-
Misconfigured Custom Salesforce Apps Expose Corporate Data
February 20, 2024 at 09:01AM A new security advisory cautions Salesforce users with customized instances to be wary of common programming errors and misconfigurations. The advisory emphasizes the vulnerability of the Apex programming language, citing instances where leaked data and vulnerable sites were identified. Recommendations include avoiding certain configurations and conducting thorough security assessments of…
-
LockBit Ransomware Operation Shut Down; Criminals Arrested; Decryption Keys Released
February 20, 2024 at 08:51AM The UK’s National Crime Agency seized LockBit’s source code and intelligence in Operation Cronos, arresting two actors and freezing 200 cryptocurrency accounts. The agency dismantled servers, retrieved decryption keys, and took control of LockBit’s services to disrupt its criminal enterprise. LockBit, known for its ransomware attacks, made over $120 million…
-
Police arrest LockBit ransomware members, release decryptor in global crackdown
February 20, 2024 at 08:14AM Law enforcement arrested two LockBit ransomware gang operators in Poland and Ukraine, seized over 200 crypto-wallets, issued three international arrest warrants, and unsealed indictments against two Russian nationals. The Operation Cronos task force coordinated the crackdown, resulting in the compromise of LockBit’s infrastructure and the development of a decryption tool.…