Category: Viral
A joint Cybersecurity Advisory highlights Iran-based cyber actor ransomware activity targeting U.S. organizations. The advisory includes CVEs exploited, alongside techniques, tactics and procedures used by the threat actors. Background On August 28, the Cybersecurity and Infrastructure Security Agency (CISA) published a joint Cybersecurity advisory (CSA) in coordination with The Federal Bureau of Investigation (FBI) and…
Read MoreSummary The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Defense Cyber Crime Center (DC3) are releasing this joint Cybersecurity Advisory (CSA) to warn network defenders that, as of August 2024, a group of Iran-based cyber actors continues to exploit U.S. and foreign organizations. This includes organizations across…
Read More
Aug 28, 2024Ravie LakshmananPhishing Attack / Data Breach Cybersecurity researchers are calling attention to a new QR code phishing (aka quishing) campaign that leverages Microsoft Sway infrastructure to host fake pages, once again highlighting the abuse of legitimate cloud offerings for malicious purposes. “By using legitimate cloud applications, attackers provide credibility to victims, helping them…
Read More
Aug 28, 2024Ravie LakshmananSoftware Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw affecting the Apache OFBiz open-source enterprise resource planning (ERP) system to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerability, known as CVE-2024-38856, carries a CVSS…
Read More
Broadcom CEO Hock Tan was a guest at VMware Explore in Las Vegas last year, but one year and $69 billion dollars later, it is his party as the newly acquired VMware By Broadcom showed off new cloud foundations, Tanzu, and AI products designed to simplify cloud deployments and deliver private, virtualized AI infrastructure. Paul…
Read More
After the massive CrowdStrike-caused Windows outage last month, SentinelOne CEO Tomer Weingarten says the incident revealed that cybersecurity ‘is not a winner-takes-all market.’ SentinelOne CEO Tomer Weingarten said Tuesday that the massive Microsoft Windows outage caused by a faulty CrowdStrike update last month signals the dangers of consolidating too heavily on certain technology vendors. “The…
Read More
HP will “modernize and expand our facility” with the funds, CEO Enrique Lores said in a statement. HP has inked preliminary terms for a $50 million award from the U.S. federal government that would support its microfluids semiconductor fab in Oregon. Should HP receive the funds, the Palo Alto, Calif.-based computer maker will “modernize and…
Read More
Having achieved $100 million in ARR last year, the developer of data management and observability software says it now ranks among the fastest growing infrastructure software companies in the IT industry. Cribl has raised $319 million in an oversubscribed Series E funding round that boosted the valuation of the developer of IT and security data…
Read More
A zero-day vulnerability in Versa Director has reportedly been exploited by Chinese government hackers to target internet service providers and MSPs. Internet service providers and MSPs are the main targets of a cyberattack campaign exploiting a Versa Networks SD-WAN vulnerability and linked to the Chinese government, according to security researchers and media reports. The attacks…
Read More
Aug 27, 2024Ravie LakshmananCyber Espionage / Malware Users of Chinese instant messaging apps like DingTalk and WeChat are the target of an Apple macOS version of a backdoor named HZ RAT. The artifacts “almost exactly replicate the functionality of the Windows version of the backdoor and differ only in the payload, which is received in…
Read More