Category: Kamban
Image: MidjourneyThe U.S. Department of Justice unsealed an indictment charging three Iranian hackers with a “hack-and-leak” campaign that aimed to influence the 2024 U.S. presidential election. Iranian nationals Masoud Jalili, Seyyed Ali Aghamiri, and Yaser Balaghi worked for Iran’s Islamic Revolutionary Guard Corps (IRGC) to hack the accounts of current and former U.S. officials, individuals…
Read More
Microsoft has announced security and privacy upgrades to its AI-powered Windows Recall feature, which now can be removed and has stronger default protection for user data and tighter access controls. Today’s announcement comes in response to customer pushback requesting stronger default data privacy and security protections, which prompted the company to delay its public release…
Read More
The U.S. Department of Justice (DoJ) has announced charges against two Russian nationals for operating billion-dollar money laundering services for cybercriminals, including ransomware groups. The charges involve money laundering, bank fraud, and facilitating websites that sell stolen credit card information and personal data. The two individuals are Sergey Ivanov, using the alias “Taleon,”and Timur Shakhmametov (a.k.a. “JokerStash”…
Read More
For the week ending Sept. 27, CRN takes a look at the companies that brought their ‘A’ game to the channel including HP Inc., Torq, Hewlett Packard Enterprise, SafeBreach and Salesforce. The Week Ending Sept. 27 Topping this week’s Came to Win list is HP Inc. for a savvy acquisition that will provide customers with…
Read More
Microsoft warns that ransomware threat actor Storm-0501 has recently switched tactics and now targets hybrid cloud environments, expanding its strategy to compromise all victim assets. The threat actor first emerged in 2021 as a ransomware affiliate for the Sabbath ransomware operation. Later they started to deploy file-encrypting malware from Hive, BlackCat, LockBit, and Hunters International gangs.…
Read More
‘AI is both a technology and a new way of working, and the full value will only come from strategies built on both productivity and growth. And it will be used in every part of the enterprise,’ says Accenture Chair and CEO Julie Sweet. Despite a challenging environment in fiscal 2024, Accenture used its expertise…
Read More
Progress Software warned customers to patch multiple critical and high-severity vulnerabilities in its WhatsUp Gold network monitoring tool as soon as possible. However, even though it released WhatsUp Gold 24.0.1, which addressed the issues last Friday and published an advisory on Tuesday, the company has yet to provide any details regarding these flaws. “The WhatsUp Gold…
Read More
Microsoft has released the September 2024 preview cumulative update for Windows 11 23H2 and 22H2, with 13 improvements and fixes for multiple issues, including Edge and task manager freezes. KB5043145 is a monthly optional update designed to help Windows admins test bug fixes, new features, and improvements that will be rolled out to all customers…
Read More
Under certain conditions, attackers can chain a set of vulnerabilities in multiple components of the CUPS open-source printing system to execute arbitrary code remotely on vulnerable machines. Tracked as CVE-2024-47076 (libcupsfilters), CVE-2024-47175 (libppd), CVE-2024-47176 (cups-browsed) and CVE-2024-47177 (cups-filters) and discovered by Simone Margaritelli, these security flaws don’t affect systems in their default configuration. CUPS (short…
Read More
A new variant of the RomCom malware called SnipBot, has been used in attacks that pivot on the network to steal data from compromised systems. Palo Alto Network’s Unit 42 researchers discovered the new version of the malware after analyzing a DLL module used in SnipBot attacks. The latest SnipBot campaigns appear to target a…
Read More