December 28, 2023 at 12:13PM Two cybercrime attacks targeted high-profile Las Vegas casinos, resulting in ransomware infections and data theft. While one company, Caesar Entertainment, chose to pay the ransom and experienced minimal disruption, the other, MGM Resorts, opted not to pay and suffered extensive downtime and financial losses. The decision to pay or not … Read more
December 21, 2023 at 07:33AM Ivanti has released Avalanche 6.4.2 to patch 20 vulnerabilities in its enterprise mobile device management product. The flaws, including critical ones, can be exploited for remote code execution and denial-of-service attacks. Customers are urged to install the patches promptly due to the potential targeting of Ivanti product vulnerabilities by threat … Read more
December 20, 2023 at 04:59PM Black Hat Europe 2023, held in London from December 4 to 7, saw over 3,600 attendees from 118 countries. The event showcased the latest in information security through 40 Briefings, four days of technical Trainings, 50 Sponsored Sessions, and 54 in-person tool demos. Top sponsors included Axonius, Bionic, KnowBe4, and … Read more
December 19, 2023 at 04:33AM Qakbot malware has resurged with a new phishing campaign targeting the hospitality sector. The gang uses malicious PDF attachments disguised as IRS documents to distribute the malware. Despite earlier efforts to take it down, Qakbot has reappeared, demonstrating the challenge of combating cybercrime. Similar to Emotet’s revival, Qakbot’s resurgence poses … Read more
December 17, 2023 at 09:27PM MongoDB issued an alert about unauthorized access to its corporate systems, exposing customer account metadata and contact information. Customers are advised to be vigilant for social engineering and phishing attacks, activate multi-factor authentication, and rotate their passwords. Critical vulnerabilities in Siemens and Unitronics PLCs and other ICS devices were also … Read more
December 15, 2023 at 02:37AM The blog discusses CVE-2023-50164, a critical vulnerability in Apache Struts 2 that enables unauthorized path traversal and remote code execution. It advises users to upgrade to Struts 2.5.33, 6.3.0.2, or higher to mitigate the risk. The vulnerability is exploited by various threat actors and can be mitigated using security solutions … Read more
December 14, 2023 at 06:35PM Kraft Heinz confirmed their systems are normal with no evidence of a breach listed by an extortion group. Kraft Heinz, a leading food and beverage company, is being threatened by the Snatch extortion group, but no proof of breach was provided. The company is investigating claims but sees no evidence … Read more
December 14, 2023 at 09:03AM Zoom has introduced a new Vulnerability Impact Scoring System (VISS) to help cybersecurity teams prioritize threats. It analyzes 13 impact aspects, produces a 0-100 score, and can be adjusted using compensating controls. In testing, critical vulnerabilities increased by 28%, while medium-severity ones decreased by 57%. Zoom aims to enhance security … Read more
December 13, 2023 at 05:31AM Close to a million records containing personally identifiable information of donors to non-profits were exposed in an online database owned by DonorView, provider of a fundraising platform for schools, charities, and religious institutions. The exposed data included donor names, addresses, phone numbers, emails, and payment methods, raising concerns about potential … Read more
December 8, 2023 at 11:48AM Summary: This SecurityWeek post highlights lesser-known stories including a fake Lockdown Mode, a new Linux RAT, AI being jailbroken, and a country’s DNS being hijacked. Based on the meeting notes, the notable security-related stories that were discussed are: 1. Fake Lockdown Mode 2. New Linux RAT 3. Jailbreaking AI 4. … Read more