Month: May 2024
The Hôpital de Cannes – Simone Veil (CHC-SV) in France announced it received a ransom demand from the Lockbit 3.0 ransomware gang, saying they refuse to pay the ransom. On April 17, the 840-bed hospital announced a severe operational disruption caused by a cyberattack that forced it to take all computers offline and reschedule non-emergency procedures and…
Read MoreCISA warned today that attackers are actively exploiting a maximum-severity GitLab vulnerability that allows them to take over accounts via password resets. GitLab hosts sensitive data, including proprietary code and API keys, and account hijacking can have a significant impact. Successful exploitation can also lead to supply chain attacks that can compromise repositories by inserting…
Read MoreCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-7028 Microsoft SmartScreen Prompt Security Feature Bypass Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of…
Read MoreAs UnitedHealth’s CEO gets grilled by a U.S. Senate committee, the folly of acquiring a company with outdated cybersecurity practices is on display. Among the many lessons from the Change Healthcare cyberattack, one that’s come into clearer focus this week goes something like this: Companies that ignore cybersecurity as part of an M&A process, do…
Read MoreWith its own MongoDB Atlas development platform at the core, the new MAAP initiative pulls together expertise and technology from cloud hyperscalers, leading GenAI tech providers such as Anthropic and LangChain, and MongoDB consulting/SI partners. MongoDB has launched a program that provides a complete technology stack, services and other resources to help businesses develop and…
Read MoreMicrosoft has confirmed customer reports of NTLM authentication failures and high load after installing last month’s Windows Server security updates. According to a new entry added to the Windows health dashboard on Tuesday, this known issue will only affect Windows domain controllers in organizations with a lot of NTLM traffic and few primary DCs. The…
Read More‘I can’t imagine a better leader, he’s got terrific vision, he’s got the fire in his belly that I share with him and he’s ready to take it to a whole new level. I’m looking forward to plugging in and being on the ride, but I don’t need to steer the ship,’ Pax8’s John Street…
Read MoreNew Hewlett Packard Enterprise VP of Worldwide Distribution Michael Bernhardt told CRN among his top priorities will be to “increase engagement and participation” in the “under-utilized” HPE distribution led service provider program. Hewlett Packard Enterprise Director of Worldwide Distribution Michael Bernhardt, a 28-year HPE and HP channel veteran, has been promoted to vice president of…
Read MoreMay 01, 2024NewsroomFinancial Crime / Forensic Analysis A forensic analysis of a graph dataset containing transactions on the Bitcoin blockchain has revealed clusters associated with illicit activity and money laundering, including detecting criminal proceeds sent to a crypto exchange and previously unknown wallets belonging to a Russian darknet market. The findings come from Elliptic in…
Read MoreMicrosoft has confirmed that the April 2024 Windows security updates break VPN connections across client and server platforms. The company explains on the Windows health dashboard that “Windows devices might face VPN connection failures after installing the April 2024 security update or the April 2024 non-security preview update.” “We are investigating user reports, and we…
Read MoreRecent Posts
- Security plugin flaw in millions of WordPress sites gives admin access
- Phishing emails increasingly use SVG attachments to evade detection
- Fake AI video generators infect Windows, macOS with infostealers
- T-Mobile confirms it was hacked in recent wave of telecom breaches
- GitHub projects targeted with malicious commits to frame researcher