September 5, 2024 at 02:48PM Ransomware gang RansomHub claims to have stolen 93 GB of data from nonprofit Planned Parenthood, threatening to publish it unless a ransom is paid. The cybercriminal group has targeted over 200 victims, including organizations in various sectors. Planned Parenthood confirmed a cyberattack and is working to address the incident while … Read more
September 5, 2024 at 02:03PM A critical vulnerability was found in LiteSpeed Cache, a popular caching plugin for over 6 million WordPress sites. This flaw could impact user browsing speed. Based on the meeting notes, it appears that a critical severity vulnerability has been found in LiteSpeed Cache, a caching plugin used in over 6 … Read more
September 4, 2024 at 06:06PM Microchip Technology Inc. has reported that employee data was stolen in a cyberattack in August. The attack was attributed to the Play ransomware gang. Based on the meeting notes, it appears that Microchip Technology Incorporated has confirmed that employee information was stolen from systems compromised in a cyberattack in August. … Read more
September 4, 2024 at 04:43PM Security researchers have discovered a concerning method for attackers to distribute malicious payloads through the PyPI package repository. By re-registering a removed package with the same name, adversaries can pass off rogue packages as legitimate ones. This “Revival Hijack” method poses a clear threat, with 120,000 abandoned packages susceptible to … Read more
September 4, 2024 at 11:53AM Cisco’s online merchandise store is currently offline and undergoing maintenance due to a compromise with malicious JavaScript code that steals sensitive customer details during the checkout process. The attack appears to be a CosmicSting vulnerability, affecting the store’s ability to process transactions and potentially compromising customer data. Cisco has not … Read more
September 3, 2024 at 03:59PM Zyxel released security updates for a critical vulnerability affecting various business routers, allowing unauthenticated attackers to execute OS commands. The flaw, tracked as CVE-2024-7261, has a CVSS v3 score of 9.8. Additionally, multiple high-severity flaws in APT and USG FLEX firewalls were addressed through security updates. Detailed information is available … Read more
September 2, 2024 at 10:48PM A 57-year-old man from Missouri has been arrested for a failed data extortion campaign against his former employer, an industrial company in New Jersey. Daniel Rhyne faces charges including extortion, intentional damage to a protected computer, and wire fraud after attempting to extort 20 bitcoins, valued at $750,000. He could … Read more
September 2, 2024 at 02:20PM Transport for London (TfL) is actively investigating an ongoing cyberattack with no current impact on its services. The agency assured customers that there is no evidence of compromised customer data and promptly reported the attack to government authorities. Measures have been implemented to prevent further system access, as TfL works … Read more
August 30, 2024 at 01:06PM North Korean hackers utilized a patched Google Chrome zero-day to distribute the FudModule rootkit, gaining SYSTEM privileges through a Windows Kernel exploit. Microsoft attributed the attacks to the North Korean threat actor Citrine Sleet, known for targeting the cryptocurrency sector for financial gain. The group is also associated with other … Read more
August 29, 2024 at 02:34PM Former infrastructure engineer, Daniel Rhyne, was arrested and charged after allegedly locking colleagues out of their company’s systems and threatening to shut down servers unless paid a ransom. This led to him being charged with extortion, intentional damage to a protected computer, and wire fraud, facing up to 35 years … Read more