Recent Security News
-
Citrix Hypervisor gets hotfix for new Reptar Intel CPU flaw
November 15, 2023 at 02:32PM Citrix has released hotfixes for two vulnerabilities affecting Citrix Hypervisor. One of the vulnerabilities, known as “Reptar,” affects Intel CPUs and can lead to system instability, crashes, or privilege escalation. The other vulnerability allows malicious code in a guest virtual machine to compromise an AMD-based host. Instructions on applying the…
-
Toronto Public Library confirms data stolen in ransomware attack
November 15, 2023 at 02:24PM The Toronto Public Library (TPL) experienced a ransomware attack in October, resulting in the theft of personal information belonging to employees, customers, volunteers, and donors. The compromised file server contained data dating back to 1998, including names, social insurance numbers, birth dates, home addresses, and government-issued identification documents. The library…
-
Google Workspace weaknesses allow plaintext password theft
November 15, 2023 at 01:36PM Researchers at Bitdefender have identified weaknesses in Google Workspace that could potentially lead to ransomware attacks, data exfiltration, and password decryption. These vulnerabilities could also be used to access Google Cloud Platform with custom permissions and propagate from one machine to another. Google has stated that these weaknesses are outside…
-
FBI and CISA warn of opportunistic Rhysida ransomware attacks
November 15, 2023 at 12:51PM The FBI and CISA issued a warning about the Rhysida ransomware gang, which has been targeting organizations across various sectors. Rhysida gained notoriety after breaching the Chilean Army and targeting healthcare organizations. The advisory provides indicators of compromise and tactics used by Rhysida. The gang utilizes ransomware-as-a-service (RaaS) and exploits…
-
Cyber Resilience Requires Maturity, Persistence & Board Engagement
November 15, 2023 at 12:01PM Cyber resilience is crucial in the face of increasing geopolitical threats and advancements in technology like AI, according to cybersecurity leaders Reem Alshammari and Abeer Khedr at the Black Hat Middle East and Africa conference. They emphasized the need for organizations to prepare for cyber attacks and integrate cyber resilience…