Month: August 2024
State-sponsored Chinese hackers exploited a zero-day vulnerability in Versa Director, a software platform for managing SD-WAN infrastructure used by internet service providers (ISPs) and managed service providers (MSPs). The group, known in the security industry as Volt Typhoon, has targeted US critical infrastructure organizations in the past. “Black Lotus Labs has observed the zero-day exploitation…
Read More
Young Consulting is sending data breach notifications to 954,177 people who had their information exposed in a BlackSuit ransomware attack on April 10, 2024. Young Consulting (now Connexure) is an Atlanta-based software solutions provider specializing in the employer stop-loss marketplace, assisting insurance carriers, brokers, and third-party administrators in managing, marketing, underwriting, and administering stop-loss insurance…
Read More
Having achieved $100 million in ARR last year, the developer of data management and observability software says it now ranks among the fastest growing infrastructure software companies in the IT industry. Cribl has raised $319 million in an oversubscribed Series E funding round that boosted the valuation of the developer of IT and security data…
Read More
Sources said ConnectWise is crafting a deal to buy the business continuity and disaster recovery vendor for as much as $500 million. ConnectWise is finalizing a deal to buy business continuity and disaster recovery vendor Axcient for between $400 million and $500 million, according to two people with knowledge of the deal. The deal provides…
Read More
The U.S. Marshals Service (USMS) denies its systems were breached by the Hunters International ransomware gang after being listed as a new victim on the cybercrime group’s leak site on Monday. “USMS is aware of the allegations and has evaluated the materials posted by individuals on the dark web, which do not appear to derive…
Read More
Microsoft has released the optional KB5041587 preview cumulative update for Windows 11 23H2 and 22H2, which adds sharing to Android devices and fixes multiple File Explorer issues. The August 2024 non-security preview update improves Windows sharing capabilities, enabling users to easily share content with their Android devices using the Windows share window. “To do this,…
Read More
Notion has announced it will exit the Russian market and is terminating all workspaces and accounts identified linked to users in the country. In an announcement on its website, Notion says the decision was taken due to U.S.-government imposed restrictions on software service providers, making it practically impossible to continue operating in Russia. “The U.S.…
Read More
SafeBreach security researcher Alon Leviev has released his Windows Downdate tool, which can be used for downgrade attacks that reintroduce old vulnerabilities in up-to-date Windows 10, Windows 11, and Windows Server systems. In such attacks, threat actors force up-to-date targeted devices to revert to older software versions, thus reintroducing security vulnerabilities that can be exploited…
Read More
The Pidgin messaging app removed the ScreenShareOTR plugin from its official third-party plugin list after it was discovered that it was used to install keyloggers, information stealers, and malware commonly used to gain initial access to corporate networks. The plugin was promoted as a screen-sharing tool for secure Off-The-Record (OTR) protocol and was available for…
Read More
Under E2EE, decryption keys are stored only on devices, meaning that governments can’t eavesdrop on what is being said by demanding the keys from service providers. Not surprisingly, governments hate this, leading to the suggestion in countries such as the US and UK that the technology might be outlawed at some point. Ironically, Telegram doesn’t…
Read More