Month: August 2024
State-sponsored Chinese hackers exploited a zero-day vulnerability in Versa Director, a software platform for managing SD-WAN infrastructure used by internet service providers (ISPs) and managed service providers (MSPs). The group, known in the security industry as Volt Typhoon, has targeted US critical infrastructure organizations in the past. “Black Lotus Labs has observed the zero-day exploitation…
Read MoreYoung Consulting is sending data breach notifications to 954,177 people who had their information exposed in a BlackSuit ransomware attack on April 10, 2024. Young Consulting (now Connexure) is an Atlanta-based software solutions provider specializing in the employer stop-loss marketplace, assisting insurance carriers, brokers, and third-party administrators in managing, marketing, underwriting, and administering stop-loss insurance…
Read MoreHaving achieved $100 million in ARR last year, the developer of data management and observability software says it now ranks among the fastest growing infrastructure software companies in the IT industry. Cribl has raised $319 million in an oversubscribed Series E funding round that boosted the valuation of the developer of IT and security data…
Read MoreSources said ConnectWise is crafting a deal to buy the business continuity and disaster recovery vendor for as much as $500 million. ConnectWise is finalizing a deal to buy business continuity and disaster recovery vendor Axcient for between $400 million and $500 million, according to two people with knowledge of the deal. The deal provides…
Read MoreThe U.S. Marshals Service (USMS) denies its systems were breached by the Hunters International ransomware gang after being listed as a new victim on the cybercrime group’s leak site on Monday. “USMS is aware of the allegations and has evaluated the materials posted by individuals on the dark web, which do not appear to derive…
Read MoreMicrosoft has released the optional KB5041587 preview cumulative update for Windows 11 23H2 and 22H2, which adds sharing to Android devices and fixes multiple File Explorer issues. The August 2024 non-security preview update improves Windows sharing capabilities, enabling users to easily share content with their Android devices using the Windows share window. “To do this,…
Read MoreNotion has announced it will exit the Russian market and is terminating all workspaces and accounts identified linked to users in the country. In an announcement on its website, Notion says the decision was taken due to U.S.-government imposed restrictions on software service providers, making it practically impossible to continue operating in Russia. “The U.S.…
Read MoreSafeBreach security researcher Alon Leviev has released his Windows Downdate tool, which can be used for downgrade attacks that reintroduce old vulnerabilities in up-to-date Windows 10, Windows 11, and Windows Server systems. In such attacks, threat actors force up-to-date targeted devices to revert to older software versions, thus reintroducing security vulnerabilities that can be exploited…
Read MoreThe Pidgin messaging app removed the ScreenShareOTR plugin from its official third-party plugin list after it was discovered that it was used to install keyloggers, information stealers, and malware commonly used to gain initial access to corporate networks. The plugin was promoted as a screen-sharing tool for secure Off-The-Record (OTR) protocol and was available for…
Read MoreUnder E2EE, decryption keys are stored only on devices, meaning that governments can’t eavesdrop on what is being said by demanding the keys from service providers. Not surprisingly, governments hate this, leading to the suggestion in countries such as the US and UK that the technology might be outlawed at some point. Ironically, Telegram doesn’t…
Read MoreRecent Posts
- Broadcom’s VMware Issues ‘Top of Mind’ For Partners, Nutanix Channel Chief Says
- Microsoft just killed the Windows 10 Beta Channel again
- Fraud network uses 4,700 fake shopping sites to steal credit cards
- CISA warns of more Palo Alto Networks bugs exploited in attacks
- New Glove infostealer malware bypasses Chrome’s cookie encryption