A new advanced persistent threat (APT) group named CloudSorcerer abuses public cloud services to steal data from Russian government organizations in cyberespionage attacks. Kaspersky security researchers discovered the cyberespionage group in May 2024. They report that CloudSorcerer uses custom malware that uses legitimate cloud services for command and control (C2) operations and data storage. Kaspersky…
Read More2code — himer The Himer WordPress theme before 2.1.1 does not sanitise and escape some of its Post settings, which could allow high privilege users such as Contributor to perform Stored Cross-Site Scripting attacks 2024-07-03 5.4 CVE-2024-2234contact@wpscan.com 2code — himer The Himer WordPress theme before 2.1.1 does not have CSRF checks in some places, which…
Read More
Is it only a few weeks since OpenAI announced its new app for macOS computers? To much fanfare, the makers of ChatGPT revealed a desktop version that allowed Mac users to ask questions directly rather than via the web. “ChatGPT seamlessly integrates with how you work, write, and create,” bragged OpenAI. What could possibly go…
Read More
Jul 08, 2024NewsroomRansomware / Encryption An emerging ransomware-as-a-service (RaaS) operation called Eldorado comes with locker variants to encrypt files on Windows and Linux systems. Eldorado first appeared on March 16, 2024, when an advertisement for the affiliate program was posted on the ransomware forum RAMP, Singapore-headquartered Group-IB said. The cybersecurity firm, which infiltrated the ransomware…
Read More
CRN recognizes over 100 individuals across the channel who are dedicated to building an inclusive culture where everyone can thrive and reach their full potential. In its second annual Inclusive Channel Leaders list, CRN shines a spotlight on those executives who lead by example and are driving diversity, equity and inclusion across their organization. These…
Read More
Roblox announced late last week that it suffered a data breach impacting attendees of the 2022, 2023, and 2024 Roblox Developer Conference attendees. Roblox is an online gaming and game creation platform popular among younger audiences that design, create, and share games with a large community of over 200 million active users. The company hosts…
Read More
CRN breaks down the 10 coolest cloud computing startup companies that are making waves in 2024 around AI, Kubernetes, multi-cloud networking and other key cloud markets. The need for new and improved cloud computing solutions is being met head-on by startups in 2024 that are focusing on infrastructure optimization, artificial intelligence and cloud management. From…
Read More
“We’re a software vendor and we sell to financial institutions and we sell to the government and in a lot of cases, the requirements of those organizations get passed to us,” says Lindner, who is covered under his company’s D&O policy. “So, while we’re not a public company, we still have to abide by breach…
Read More
Jul 08, 2024The Hacker NewsCybersecurity / Enterprise Security Events like the recent massive CDK ransomware attack – which shuttered car dealerships across the U.S. in late June 2024 – barely raise public eyebrows anymore. Yet businesses, and the people that lead them, are justifiably jittery. Every CISO knows that cybersecurity is an increasingly hot topic…
Read More
OpenAI, headquartered in San Francisco, confirmed the breach to employees as well as the board of directors in April 2023 in an all-hands call but opted not to make it public. The company reasoned that no customer or partner data was compromised, and they believed the hacker was an individual, not a state-sponsored actor, the…
Read More