September 24, 2024 at 03:44PM Multiple critical security vulnerabilities have been found in automatic tank gauge (ATG) systems, posing threats to critical infrastructure by allowing attackers to potentially gain full control of the systems. Researchers warn of the potential for cyberattacks impacting fuel availability, environmental disruption, and physical damage. Mitigation efforts are ongoing, emphasizing the … Read more
September 21, 2024 at 11:37AM The hacktivist group Twelve has been observed conducting destructive cyber attacks against Russian targets. They encrypt victims’ data and destroy infrastructure, causing maximum damage without financial gain. The group, linked to the Russo-Ukrainian war, utilizes various tools and tactics, sharing similarities with the ransomware group DARKSTAR. Their attacks involve exploiting … Read more
September 20, 2024 at 01:39PM Ukraine’s National Coordination Centre for Cybersecurity has restricted the use of Telegram messaging app due to national security concerns, particularly its security risks in the ongoing war with Russia. This includes concerns over Russian intelligence accessing user data. The ban applies to government, military, and critical infrastructure personnel, while ordinary … Read more
September 19, 2024 at 08:24AM The healthcare industry faces a critical need for cybersecurity due to increasing cyberattacks, with ransomware holding hospitals’ systems hostage and causing patient care disruptions. Poor cybersecurity hygiene exposes vulnerabilities, leading to devastating consequences. Healthcare organizations can improve by continuous monitoring, 24×7 security operations, third-party risk management, regular patching and encryption, … Read more
September 18, 2024 at 11:14AM Huntress warns of cyberattacks targeting Foundation Accounting Software, widely used in construction. Threat actors are brute forcing the application and exploiting default credentials, compromising organizations in various sub-industries. The attackers target MSSQL accounts, execute OS commands, and automate attacks. Only 33 publicly exposed hosts running the software with unchanged default … Read more
September 16, 2024 at 03:56PM CISA orders U.S. federal agencies to secure systems against a Windows MSHTML spoofing bug exploited by the Void Banshee APT group. The vulnerability (CVE-2024-43461) was exploited before being fixed, allowing attackers to execute code on unpatched Windows systems. The vulnerability has been added to CISA’s Known Exploited Vulnerabilities catalog, and … Read more
September 15, 2024 at 02:18PM The FBI and CISA warn of false claims about U.S. voter registration data being compromised by cyberattacks. They highlight that this disinformation aims to manipulate public opinion and undermine confidence in democratic institutions. No evidence of a cyberattack impacting the election process or compromising the integrity of the results has … Read more
September 11, 2024 at 06:53PM Cybercriminals caused school closures in America and Britain by launching ransomware attacks, disrupting internet-based systems for students. Highline Public Schools in Washington state and Charles Darwin School in England faced closures and system shutdowns. These incidents highlight the vulnerability of educational institutions to cyber threats, emphasizing the need for robust … Read more
September 11, 2024 at 06:27AM Cybersecurity researchers have discovered new malicious Python packages targeting software developers, using fake job interviews as lures. Linked to North Korea-backed Lazarus Group, the ongoing campaign dubbed VMConnect employs modified legit PyPI libraries to embed malicious code. Attackers impersonate legitimate companies and use LinkedIn to contact and infect unsuspecting developers. … Read more
September 9, 2024 at 05:52PM Ransomware affiliates exploit a critical security vulnerability in SonicWall SonicOS firewall devices to breach victims’ networks, impacting Gen 5, Gen 6, and Gen 7 firewalls. The vulnerability initially affected the firewalls’ management access interface, but was later found to also impact the SSLVPN feature and exploited in attacks. Mitigation measures … Read more