Latest News

The US government has sanctioned today four companies that develop and sell spyware and other hacking tools, the US Department of Commerce announced today. The four companies include Israel’s NSO Group and Candiru, Russian security firm Positive Technologies, and Singapore-based Computer Security Initiative Consultancy. US officials said the four companies engaged in “activities that are contrary to the national security […]

The US Cybersecurity and Infrastructure Security Agency has established today a public catalog of vulnerabilities known to be exploited in the wild and has issued a binding operational directive ordering US federal agencies to patch affected systems within specific timeframes and deadlines. The catalog —available online here— currently lists 306 vulnerabilities, with some as old as […]

Threat actors are exploiting a security flaw in GitLab self-hosted servers to assemble botnets and launch gigantic distributed denial of service (DDoS) attacks, with some in excess of 1 terabit per second (Tbps). The DDoS attacks, disclosed today by Damian Menscher, a Security Reliability Engineer at Google Cloud responsible for Google’s DDoS defenses, are exploiting CVE-2021-22205, […]

An unknown ransomware group is exploiting a critical SQL injection bug found in the BillQuick Web Suite time and billing solution to deploy ransomware on their targets’ networks in ongoing attacks. BQE Software, the company behind BillQuick, claims to have a 400,000 strong user base worldwide. The vulnerability, tracked as CVE-2021-42258, can be triggered extremely easily […]

A file image of Microsoft, which has outlined recent activity by Nobelium, the group behind the SolarWinds campaign The nation-state actor behind the 2020 cyberattack targeting SolarWinds customers – Nobelium – is continuing its campaign to target the global IT supply chain, according to a new advisory from Microsoft, which says 140 resellers and technology […]

  A New York Times journalist covering the Middle East has described the experience of his iPhone being hacked, and the security precautions he now takes as a result. Ben Hubbard says there were four attempts to hack his iPhone, and that two of them succeeded, with all the signs pointing to the use of […]

For many cloud apps, administrators are given a super admin account credential, also known as the root account, which allows wide-reaching administrative access to the account. These super admin credentials are necessary for some administrative actions and should be the organization’s most secure account credentials. However, if root accounts are left unprotected, attackers can abuse […]

Not-for-profit organization MITRE announced ATT&CK v10 with updates in techniques, groups, and software for the enterprises, mobile devices, and ICS (industrial control system) frameworks. The biggest change is the addition of a new set of data source and data component objects in enterprise ATT&CK, which compliments the ATT&CK data source name changes released in ATT&CK […]

This year’s cyber security awareness month provides a timely reminder of the increasingly dangerous threat landscape facing organizations and individuals. The accelerated shift to digital during COVID-19 has dramatically expanded the attack surface for cyber-criminals; therefore, the general public needs to learn, and learn fast, about the digital threats they face and how to mitigate them. […]

2021 The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have observed an increase in highly impactful ransomware attacks occurring on holidays and weekends—when offices are normally closed—in the United States as recently as the Fourth of July holiday in 2021. The FBI and CISA do not currently have any specific threat reporting indicating […]