Nation-State
North Korean state-sponsored hacking group Lazarus was seen exploiting a Dell DBUtil driver vulnerability to disable the security mechanisms on the targeted Windows machines.
Hi, what are you looking for?
SecurityWeek
Nation-State
Mandiant summarizes some of the latest operations of Russia’s notorious Sandworm group, which it now tracks as APT44.
Malware & Threats
Palo Alto Networks has started releasing hotfixes for the firewall zero-day CVE-2024-3400, which some have linked to North Korea’s Lazarus.
Data Breaches
The US government says Midnight Blizzard’s compromise of Microsoft corporate email accounts "presents a grave and unacceptable risk to federal agencies."
Government
Ivanti releases a carefully scripted YouTube video and an open letter from chief executive Jeff Abbott vowing to fix the entire security organization.
Cloud Security
News analysis: SecurityWeek editor-at-large Ryan Naraine reads the CSRB report on China's audacious Microsoft’s Exchange Online hack and isn't at all surprised by the findings.
Cyberwarfare
Threat intelligence firm EclecticIQ documents the delivery of malware phishing lures to government and private energy organizations in India.
Application Security
Threat hunters at Microsoft have intercepted a notorious North Korean government hacking group lacing legitimate open source software with custom malware capable of data...
Application Security
Microsoft has published an analysis of the ransomware attacks associated with a subgroup of the Iran-linked advanced persistent threat (APT) actor Phosphorus.
Application Security
Multiple Iranian hacking groups participated in a recent cyberattack targeting the Albanian government, according to new data from Microsoft's security research and response teams.
Cybercrime
For roughly six months, the North Korean Lazarus hacking group has been targeting energy companies in Canada, the US, and Japan with three remote...
Cybercrime
The Treasury Department is facing pushback from the cryptocurrency industry over sanctions imposed on a firm accused of helping to launder billions of dollars...
Cyber Insurance
More than three-quarters of security professionals in large organizations believe the world is now in a state of perpetual cyberwar – and 82% consider...
Cybercrime
Researchers with cybersecurity company ESET have observed a new macOS malware sample developed by the infamous North Korean advanced persistent threat (APT) actor Lazarus.
Cybercrime
The United States placed sanctions Monday on Tornado Cash, a leading "crypto mixer" for transactions in virtual currency that US officials describe as a...
Cyberwarfare
Over the past year, North Korean advanced persistent threat (APT) actor Kimsuky has been observed using a browser extension to steal content from victims’...
Cybercrime
The US Department of State has announced that it is offering up to $10 million as a reward for information on individuals associated with...
Cybercrime
The FBI and Justice Department recently disrupted the activities of a hacking group that was sponsored by the North Korean government and that targeted...
Cybercrime
LabHost, a major phishing-as-a-service platform, has been shut down as part of a major law enforcement operation.
Vulnerabilities
Cloud Security
Artificial Intelligence
Malware & Threats
CISO Conversations
Application Security
Malicious hackers are targeting SAP applications at an alarming pace, according to warnings from Onapsis and Flashpoint.
Data Protection
