June 28, 2024 at 02:27AM TeamViewer detected an “irregularity” in its internal IT environment on June 26, 2024. The company immediately activated a response team and began investigations with cyber security experts. It stated that no customer data was impacted and an investigation is ongoing. The U.S. Health-ISAC issued a bulletin about threat actors’ exploitation … Read more
May 15, 2024 at 01:10PM Financially-motivated cybercriminals are exploiting the Windows Quick Assist feature for social engineering attacks, deploying Black Basta ransomware on victims’ networks. Microsoft, Rapid7, and other security firms have observed the tactics of the threat group Storm-1811 and advise network defenders to block or uninstall Quick Assist and train employees to recognize … Read more
May 7, 2024 at 06:26PM DocGo, a mobile medical care provider in the US and UK, confirmed a cyberattack resulting in stolen patient health data. They are working with cybersecurity experts to investigate and contain the breach and are reaching out to affected individuals. While no financial impact is expected, there are concerns of potential … Read more
April 4, 2024 at 11:15AM Ivanti plans a security overhaul, committing to a secure-by-design approach after recent exploits. CEO Jeff Abbott outlined changes, including a focus on product security, stack modernization, and better vulnerability management. The company aims to reduce time-to-patch and enhance customer support while investing in AI and transparent information sharing. These efforts … Read more
November 1, 2023 at 02:49PM Threat actors are targeting government, technical, and legal organizations globally by exploiting the ‘Citrix Bleed’ vulnerability (CVE-2023-4966) in Citrix NetScaler ADC and Gateway appliances. The attacks have been ongoing since August 2023 and involve credential theft and lateral movement. The attacks are difficult to detect due to limited forensic evidence. … Read more