Russian Security Firm Doctor Web Hacked

September 18, 2024 at 06:06AM Russian antimalware company Doctor Web detected and prevented a cyberattack targeting its resources on September 14. The firm disconnected its resources to check for compromise, temporarily suspending its virus databases. Despite the attack, no Dr.Web users were affected. The company had been monitoring the attacker’s movements and has brought its … Read more

Over 35k Domains Hijacked in ‘Sitting Ducks’ Attacks

August 2, 2024 at 05:00AM DNS providers’ inadequate verification of domain ownership puts over one million domains at risk of hijacking, leading to brand impersonation, data theft, malware delivery, and phishing. The “Sitting Ducks” attack, discovered in 2016, continues to be exploited, allowing cybercriminals to hijack domains without detection. Recommendations are provided for domain owners … Read more

China-Linked Cyber-Espionage Teams Target Asian Telecoms

June 24, 2024 at 09:08PM Multiple cyber-espionage groups compromised telecommunications operators in Asia-Pacific, using custom malware and backdoors. China-linked groups including Fireant, Neeedleminer, and Firefly were involved, targeting at least two countries. The attacks pose risks of eavesdropping, surveillance, and potential disruption to target countries’ critical infrastructure. Nations in the region continue to face escalating … Read more

Critical Fluent Bit flaw impacts all major cloud providers

May 20, 2024 at 05:16PM A critical Fluent Bit vulnerability, tracked as CVE-2024-4323 and dubbed Linguistic Lumberjack, impacts major cloud providers, tech giants, and cybersecurity firms. This memory corruption vulnerability, introduced with version 2.0.7, can be exploited for denial-of-service and remote code execution. Fixes are expected to ship with Fluent Bit 3.0.4, and mitigation steps … Read more

Rockwell’s Verve Buy Enlivens Critical Infrastructure Security

October 26, 2023 at 04:02PM Industrial automation and control system manufacturers are acquiring cybersecurity firms to enhance protection for factories and facilities. Rockwell Automation is acquiring Verve Industrial Protection, while Honeywell and Siemens have also made similar moves. The motive behind these acquisitions is not only to address cybersecurity weaknesses but also to create new … Read more

Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000

October 19, 2023 at 07:06AM Approximately 40,000 Cisco devices have been hacked through an unpatched vulnerability in the IOS XE. The vulnerability, identified as CVE-2023-20198, allows attackers to escalate privileges and gain control of the system. Cisco has not released patches and warns that the vulnerability has been exploited as a zero-day since mid-September. Vulnerability … Read more