October 31, 2023 at 04:10PM The US Securities and Exchange Commission (SEC) has filed a lawsuit against SolarWinds’ former Chief Information Security Officer (CISO), Timothy Brown, alleging that he failed to disclose critical information about the cyberattack on the company’s software supply chain. The lawsuit is seen as a rare instance of a regulatory body … Read more
October 31, 2023 at 01:48PM Ace Hardware, the world’s largest retailer-owned hardware cooperative, has experienced a cyberattack affecting its IT systems. CEO John Venhuizen confirmed that key operating systems have been interrupted or suspended. Ace Hardware has not provided further information about the attack but has called in digital forensic experts to help restore systems. … Read more
October 30, 2023 at 09:54PM The Securities and Exchange Commission (SEC) has filed charges against SolarWinds and its Chief Information Security Officer (CISO), alleging that the company misled investors about its cybersecurity practices and known risks. The charges stem from alleged fraud and internal control failures related to cybersecurity weaknesses. SolarWinds is accused of disclosing … Read more
October 30, 2023 at 12:42AM A cyber attack campaign has been using MSIX Windows app package files to distribute a new malware loader named GHOSTPULSE. The attack targets popular software like Google Chrome, Microsoft Edge, Brave, Grammarly, and Cisco Webex. Potential victims are enticed to download the packages through compromised websites, SEO poisoning, or malvertising. … Read more
October 28, 2023 at 02:18PM The Clark County School District (CCSD) in Nevada is dealing with a potentially massive data breach. Hackers gained access to the district’s email servers and allegedly stole personal information related to students, parents, and employees. CCSD disabled external access to its Google Workspace and reset all student passwords. The hackers, … Read more
October 27, 2023 at 11:43AM The Lazarus Group, a North Korea-linked threat actor, has launched a new cyber attack campaign targeting a software vendor through known security flaws in another software. The attack involved the deployment of malware families such as SIGNBT and LPEClient. The Lazarus Group has demonstrated advanced evasion techniques and targeted other … Read more
October 26, 2023 at 02:21PM Microsoft has identified the cyberattack group known as 0ktapus as one of the most dangerous financial criminal groups. The group, also referred to as Scatter Swine or Octo Tempest, uses advanced techniques such as adversary-in-the-middle tactics, social engineering, and SIM swapping. They have been involved in cryptocurrency theft, data-leak extortion, … Read more
October 25, 2023 at 06:07PM Chile’s telecommunications company, Grupo GTD, experienced a cyberattack on its Infrastructure as a Service (IaaS) platform, resulting in disruptions to services, including data centers, internet access, and Voice-over-IP (VoIP). The attack involved the Rorschach ransomware variant, which utilizes DLL sideloading vulnerabilities in legitimate executables to inject a ransomware payload and … Read more
October 25, 2023 at 03:51PM Five Ontario hospitals are facing a cyberattack that has disrupted their IT systems, resulting in the cancellation of patient appointments. Service provider TransForm is investigating whether patient data was accessed. In addition, a disinformation campaign called Spamouflage, linked to China, has been targeting Canadian government officials on social media since … Read more
October 24, 2023 at 01:51AM Password management solution 1Password had a breach of its Okta instance, but no user data was accessed. The breach involved a threat actor attempting to access an IT team member’s user dashboard and manipulate authentication flows. Measures have been taken to enhance security, including tighter MFA rules and reducing the … Read more