November 21, 2023 at 11:41AM Admins who have patched their NetScaler appliances against the Citrix Bleed vulnerability must take additional measures to secure their devices. Citrix advises wiping all previous user sessions and terminating active ones to prevent attackers from accessing compromised devices. The flaw has been actively exploited since late August, and compromised sessions … Read more
November 21, 2023 at 11:39AM Attackers are exploiting a critical remote code execution vulnerability in Apache ActiveMQ to target Linux systems with a cryptocurrency miner. The malware, known as Kinsing, infects vulnerable systems and deploys a cryptocurrency-mining script that drains resources. The flaw, tracked as CVE-2023-46604, allows remote attackers to execute arbitrary commands on affected … Read more
November 21, 2023 at 11:38AM Sumo Logic has confirmed that no customer data was compromised in a potential security breach. The company discovered unauthorized access to one of its AWS accounts but quickly secured the infrastructure and rotated customer credentials as a precaution. Sumo Logic will undertake further evaluation to prevent future incidents. Key takeaways … Read more
November 21, 2023 at 11:29AM This joint Cybersecurity Advisory (CSA) aims to provide network defenders with information about the LockBit 3.0 ransomware and its exploitation of the CVE-2023-4966 vulnerability affecting Citrix NetScaler web application delivery control (ADC) and NetScaler Gateway appliances. The CSA includes tactics, techniques, and indicators of compromise (IOCs) obtained from various organizations, … Read more
November 21, 2023 at 10:56AM A sophisticated phishing campaign using DarkGate and PikaBot malware is posing a significant threat to organizations. The campaign began after the takedown of the Qakbot operation and is considered one of the most advanced since then. The attackers employ tactics similar to the previous Qakbot campaigns, indicating a shift to … Read more
November 21, 2023 at 10:56AM VirusTotal, a cybersecurity intelligence website, has integrated IP address and URL scans from Criminal IP, a Cyber Threat Intelligence search engine. VirusTotal aggregates data from antivirus engines, website scanners, and user contributions to enhance internet safety. Criminal IP specializes in aggregating threat data related to IP and domain addresses and … Read more
November 21, 2023 at 10:56AM Malwarebytes is offering a Black Friday deal until Cyber Monday, with a 50% discount on the Premium + Privacy VPN bundle. The Premium version includes features like real-time malware protection and ransomware detection. The Privacy VPN allows for anonymous browsing and downloading with servers in multiple countries. The deal is … Read more
November 21, 2023 at 10:21AM Stealth mode security startup Lasso Security has raised $6 million in seed funding, led by Entrée Capital and with participation from Samsung Next. The Tel Aviv-based company is developing technology to address cyber threats faced by generative AI and large language models, aiming to protect businesses that use these technologies. … Read more
November 21, 2023 at 10:21AM The US cybersecurity agency, CISA, has launched a pilot program to provide managed cybersecurity services to non-federal critical infrastructure organizations. This program aims to reduce cybersecurity risks and deliver cost-effective solutions. The initial phase will focus on healthcare, water, and K-12 education entities, with the goal of expanding to 100 … Read more
November 21, 2023 at 10:04AM Organizations need to be proactive in defending against evolving cyber threats. The traditional approach of protecting the on-premises data center is no longer effective as more data is moved to the cloud. To maximize the value of cybersecurity investments, organizations should define objectives, conduct risk assessments, align cybersecurity goals with … Read more