May 30, 2024 at 11:52AM Everbridge, a crisis management software company, revealed a breach where attackers accessed business and user data. The breach used employee-targeted phishing and affects customer data. Everbridge is working with experts to evaluate the impact and is implementing multi-factor authentication for all accounts by June 3, following the advice to guard … Read more
May 27, 2024 at 06:06AM Researchers have identified phishing campaigns abusing Cloudflare Workers to serve phishing sites targeting Microsoft, Gmail, Yahoo!, and cPanel Webmail users. The phishing method, called transparent phishing, utilizes Cloudflare Workers as a reverse proxy server. The attacks predominantly target Asia, North America, and Southern Europe, using HTML smuggling to deploy the … Read more
May 23, 2024 at 07:22AM Zero-day attacks and supply chain mass compromise events are on the rise, with inadequate use of MFA, according to Rapid7’s 2024 Attack Intelligence Report. The report highlights a growing number of zero-day exploits and mass compromise events, driven by growing sophistication of cybercriminals and potential non-disclosure of vulnerabilities by vendors. … Read more
May 3, 2024 at 12:22PM CISA reports an active attack targeting GitLab’s CVE-2023-7028 vulnerability, enabling bad actors to reset account passwords and take control. The severity of the bug necessitates prompt action and patching. Security experts emphasize the importance of multifactor authentication, zero-trust architecture, and privileged access management to counter the exploit and safeguard against … Read more
May 1, 2024 at 07:21PM UnitedHealth’s Change Healthcare subsidiary paid $22 million ransom to attackers who breached its systems in February. The breach’s scope may be larger than known, as CEO Andrew Witty testified before Congress. The breach revealed poor security practices, impacting data security for PII and PHI. The long-term impact and next steps … Read more
May 1, 2024 at 06:24PM Hackers breached Dropbox Sign’s production systems, accessing authentication tokens, MFA keys, hashed passwords, and customer data. The company detected unauthorized access on April 24 and found that threat actors gained access to an automated system configuration tool, allowing them to access the customer database. Dropbox reset all users’ passwords and … Read more
April 16, 2024 at 10:28AM Social engineering poses a significant threat to organizations, with up to 98% of cyber-attacks involving some form of social engineering. Protecting digital assets, including web applications, is crucial. Strategies to mitigate social engineering risks include end user training, least privilege access, multi-factor authentication, security audits, and incident response plans. Additionally, … Read more
April 16, 2024 at 07:27AM Organizations are facing growing cybersecurity threats due to the increasing use of cloud services and remote work arrangements. The Identity Underground Report highlights the challenges and vulnerabilities in managing digital identities, uncovering concerning statistics such as insecure password practices and overlooked service accounts. Proactive measures like Multi-Factor Authentication are crucial … Read more
April 15, 2024 at 04:33PM A cyberattack on a third-party telephony provider for Cisco’s Duo MFA service has raised phishing concerns for customers. The breach saw compromised employee credentials used to access and download SMS logs of specific users. Cisco urged affected users to stay vigilant and warned of the growing trend of social engineering … Read more
April 15, 2024 at 10:58AM Hackers breached a telephony provider used by Cisco Duo, potentially compromising SMS and VoIP MFA logs. No message contents were accessed, but data like phone numbers and location could be used for phishing. The breach was identified, and security measures have been taken. Customers are urged to be vigilant against … Read more